deeb0c2d43bea63c762095122eccb947_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

deeb0c2d43bea63c762095122eccb947_JaffaCakes118
Size

7KB
MD5

deeb0c2d43bea63c762095122eccb947
SHA1

e046293e70468582f0fa1df838718bad776799be
SHA256

70e8e066de1b2ea92ac5bbecc0e7c1b6045813731f25cdae183dc82fc3e97633
SHA512

ec25b484dc07420e594dbd5ccba1a765d7ce6132cb3f5764e1e748e8639cc0a7672f3fcdc7039fa9e8dfa642413dd7db05d56adc194b06ac26cd9f9073022251
SSDEEP

96:zzXdNS5p+JwxPilwr0fb+XIxfz2W3WIAck2/65Y0gkLXUu/cJU:PNNS5Swcd8k/WzK/wku0e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
deeb0c2d43bea63c762095122eccb947_JaffaCakes118

Files

deeb0c2d43bea63c762095122eccb947_JaffaCakes118
.exe windows:4 windows x86 arch:x86

85c2b7b049aca070a93725d790810fa2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
strlen

kernel32

GetModuleHandleA
HeapCreate
HeapDestroy
ExitProcess
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc

user32

MessageBoxA

Sections

.code
Size: 1024B - Virtual size: 859B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 11B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE