d7520440aae38b29fadc7d4444a5a954_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d7520440aae38b29fadc7d4444a5a954_JaffaCakes118
Size

134KB
MD5

d7520440aae38b29fadc7d4444a5a954
SHA1

fa559beb799920552e9c1d6b880c5c4f460c08ef
SHA256

4f9d358647100debabfffbc46f2bd5086326de23b84a9c260d2e8f9c7d2f6f86
SHA512

ceb7704f9cb5ec21de29c64797c945bcbaf7818b2a17a6cd52830d570415e3f58dadcde0d3fc1e16d098bede3aa2579f41d42e7860eb951d9242764778c25c66
SSDEEP

3072:V5QS5FKyJxu7EXfJZqSc3DFY3DV79uSr0f43dd:rQSv+EfJZqJzS3DVhuSr2e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d7520440aae38b29fadc7d4444a5a954_JaffaCakes118

Files

d7520440aae38b29fadc7d4444a5a954_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

Size: - Virtual size: 112KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE