e03611e7c9d506cc51e669e7e277ff3b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e03611e7c9d506cc51e669e7e277ff3b_JaffaCakes118
Size

123KB
MD5

e03611e7c9d506cc51e669e7e277ff3b
SHA1

24a8ff24d0401c30f3d3d6a4cd09d8881ace6a43
SHA256

89cea316c4e06be0dc6138a892bf8c207d2a84e12b095a3f182d5a732aaaa8ae
SHA512

7890de06d1b88a1e0cd8ee70058dfa0dae927382d29e57ad81a59544e66d9bcdd52b56ba4fa18898264eabf3db1fd79b2301c1f6d445adc6dab8e829df780b38
SSDEEP

3072:5etKQLo7AruVNeeGeqMUAJmzX29md16MW2e7+nvqJlO:5ZxpxGeqMUAy2cd1Y2kJJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e03611e7c9d506cc51e669e7e277ff3b_JaffaCakes118

Files

e03611e7c9d506cc51e669e7e277ff3b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a3724f57367e6e7e481d8f797b7260c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetCurrentDirectoryA
CompareStringA
GetProcAddress
VirtualAlloc
GetTickCount
LoadLibraryA

user32

TranslateMessage
DispatchMessageA
GetMessageA

oleaut32

VarRound

ole32

CreateObjrefMoniker

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ