e0952d50a51b546a1fb1d96bf37e7ccc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0952d50a51b546a1fb1d96bf37e7ccc_JaffaCakes118
Size

50KB
MD5

e0952d50a51b546a1fb1d96bf37e7ccc
SHA1

b8843eaa087507c240552534eade97e109aeabee
SHA256

d24c4f4fe68b11f75ccb1bf4b12df2cbb25605cd51246aaf5ad970c3f055c792
SHA512

aeb3925aa2282070534d55802924fbe7aa7c420afdf1815241519002b7d7c468c81b20563dcaad1f3352f01adea3c3deffb0aff940ba817bb9e04d23c099dedf
SSDEEP

768:V/Kvk2lTJo1kB1VNYijh3LbyOmy0DGfs6QJoyP7l9ez+08Ho02qmXXmKS2cbryD8:lSeiHTyc0DQrg9V08/2qRruG0Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0952d50a51b546a1fb1d96bf37e7ccc_JaffaCakes118

Files

e0952d50a51b546a1fb1d96bf37e7ccc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE