c944be42b628828a8103fc8cd63d3dcb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c944be42b628828a8103fc8cd63d3dcb_JaffaCakes118
Size

37KB
MD5

c944be42b628828a8103fc8cd63d3dcb
SHA1

06e4f27ba85623ee667a3074394de82b51bfaab1
SHA256

c35309ca033a13f6e1b48edec4197130d7ad2b8ff0f050828e8fb3ebfcff36d7
SHA512

3a950ba10f1929a0d8a89f0579a0f1c8b3e8285fd47c84aac5397f909962b30533010af17dd8f797db5936ea206bc3540b40cb9d9807d36b41cc55739cd735ec
SSDEEP

768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMyr:edILlknNU4rOobbLynr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c944be42b628828a8103fc8cd63d3dcb_JaffaCakes118

Files

c944be42b628828a8103fc8cd63d3dcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

23f6e4ee8da20bb24cb1f94800599914

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

user32

FlashWindow
SetTimer
wsprintfA
MessageBoxA

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ