da25753b1c8e03ed68dad5f576dee9c4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da25753b1c8e03ed68dad5f576dee9c4_JaffaCakes118
Size

114KB
MD5

da25753b1c8e03ed68dad5f576dee9c4
SHA1

447c1afdd8945d123e30976afafaf80a38014a68
SHA256

4f3310b3a9c50cae46b7e5f72ebf0ab574cf287906ea17d6e7362fca076fbd00
SHA512

d04b27e2b6b268dfe45de4c7848f53149acf661926e78bf38d183feb556e3a2c3d621c1b6c35ad8652c2854569800092cbc9153b47f2e2526ae1a533d3b57486
SSDEEP

3072:IEM86X84CFob8/DhAHViZreQPVURDxf8s:T6s4fKeMDPVUJxR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da25753b1c8e03ed68dad5f576dee9c4_JaffaCakes118

Files

da25753b1c8e03ed68dad5f576dee9c4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5911de9c858631589329d7805540eb8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetLastError

user32

MessageBoxA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ