dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118
Size

18KB
MD5

dff40d24f81aea4e60ac0bb3b4a61cba
SHA1

dccc5acbf2df04e6336fa7245c653b7922f01f3a
SHA256

18e876a44fb1b58be6cff62e423480d6cf6f87fcd7ec4bdfed6e0ab06292f0d1
SHA512

c7f965ad5a8d191031d8e8d698b2166b026effd70084b30ead9b05a6cec4b514559e54d035bb6fa44ed34315915d4a49e433452815f68bb4994a467ae0563c56
SSDEEP

192:RoDEEy6C37xb/1Zu87WLcPxxyuadKgvyilp4Qk6dzavJSHQT0Zoa6ZpfuASOb6sk:CIbv1BYRlprGAHXAWsGfTsMt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118

Files

dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

febf9939271ddf79e366e1ca2de25aee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA

user32

MessageBoxA

Sections

PELOCKnt
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE