de8e58af7ac2d4f3f32eda19b1de2558_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de8e58af7ac2d4f3f32eda19b1de2558_JaffaCakes118
Size

241KB
MD5

de8e58af7ac2d4f3f32eda19b1de2558
SHA1

d9c946755ccb0094c67ed74dc7e4b9b31209ef40
SHA256

162cdf4c1f7f2f3fa50c482c714322c5fb07341ba81897106d0eb30cc1f0064d
SHA512

0cd136a0a30b749e38ebd17e12349508ee5b9b677a0ca70777740a0bd8bafe499f22436507096d6078ceb51ac426d02b07c64cef3851612653dd21b9cfc733a9
SSDEEP

6144:koznhdMyVyevRffkDDB7uCknL7P8rVraDVlfUTqa:RzhOoZ8vB7pMLIr5SfM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de8e58af7ac2d4f3f32eda19b1de2558_JaffaCakes118

Files

de8e58af7ac2d4f3f32eda19b1de2558_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5eeb23ac1d957d840e711fd4c46e6a87

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MapVirtualKeyA
MapVirtualKeyExA
MessageBoxA

kernel32

OpenMutexA
OpenSemaphoreA
OpenWaitableTimerA
OutputDebugStringA
PeekConsoleInputA

ole32

OleIsCurrentClipboard

Sections

.data
Size: 34KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ