bfb077d4c2902a8c6181839e9843e206_JaffaCakes118 | Triage

Sharing

General

Target

bfb077d4c2902a8c6181839e9843e206_JaffaCakes118
Size

477KB
MD5

bfb077d4c2902a8c6181839e9843e206
SHA1

d4d72413ebc334f3ae30afef2caade0ab1181ff9
SHA256

ff61bc97865744c1a5e48e990ba6b57dad8b2d2d6d04ae97219e56466d0eb542
SHA512

604964247ba466ca89919354123234947a64384b8fc45ddd1826ec64fae2b4330f01434fc5bb5355eabf35d70bc9071fdfa4ed248786a488ae6f63df11016444
SSDEEP

6144:DDkkmOUZSUysriHn6mP0dVrA9hYMaN6Zwaxg30+wHpBAksWyyAVdnI2OWWnS6ZZk:DDkjZQ9iA9hLY4xg30JEBywWnzZr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfb077d4c2902a8c6181839e9843e206_JaffaCakes118

Files

bfb077d4c2902a8c6181839e9843e206_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE