d67973fa0524973200df820a84e751b8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d67973fa0524973200df820a84e751b8_JaffaCakes118
Size

1.1MB
MD5

d67973fa0524973200df820a84e751b8
SHA1

8d4621093c295e2a5b6f7e003a8cda6edad023da
SHA256

55f17b19cb0df311b04fa78a2e2c58adb5233dba0fa0dbf0c4ba5df34b6bda67
SHA512

0611cc0a6790902dc215afb605e41b509ec0c081e5c9f65f7745ef2e180d5c3372863b85c8f9a8f47adc31e7a31c0ab8158c8c565402f198f252a22da70d0ba3
SSDEEP

24576:OG3Je5Yk0VnqZhSCZkZmIlKeFmJZikgPpFJapMzOD9LgCMawD:v3EOnqzSCZ6lKiHkopnaweNg5aC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d67973fa0524973200df820a84e751b8_JaffaCakes118

Files

d67973fa0524973200df820a84e751b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

vv
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vv
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vv
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE