d5547621d34e92e68574ad75edb287a5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d5547621d34e92e68574ad75edb287a5_JaffaCakes118
Size

41KB
MD5

d5547621d34e92e68574ad75edb287a5
SHA1

f6b0c47fb720c6a4de48b74afa1b8a3a1af087ff
SHA256

b2f8d2daec47b1ee1cfc22f6221963c0818c37dbd216b31bc34e8f299b0693a7
SHA512

a82eba9c43ad9050da0ee5cfd804d482d29a82ae6225639fc1cc7c36d32271d552b67fc5a9e7e4be933ad6e7b1576fd40461b287eef3262a4763280d05db108a
SSDEEP

768:MyFW7m5AAMypjOeJ2I3BJU/ed+B9OA3hNopDBifH63IX6DgjU67mI5iZH:3Wq51+EBJU/Nq6kka35Yla

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5547621d34e92e68574ad75edb287a5_JaffaCakes118

Files

d5547621d34e92e68574ad75edb287a5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ae50f40833b8a8c3f43d962bffc81875

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetModuleHandleA

user32

CreateWindowExA
DefWindowProcA
DestroyWindow
GetMessageA
PeekMessageA
RegisterClassA

Sections

.data?
Size: 33KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ