f0a654823b21da67bbd72017275d34d9_JaffaCakes118 | Triage

Sharing

General

Target

f0a654823b21da67bbd72017275d34d9_JaffaCakes118
Size

86KB
MD5

f0a654823b21da67bbd72017275d34d9
SHA1

532245837dd4b96846feeeed532fd7222950f3c1
SHA256

2f7a759c605fb85502179597d6ed9550a97db1bfd333978d2d8fd4f4fa99e57b
SHA512

576a49589652eeda96a4b61ead11e5a6b81616ae8601b247fb3a2e58f631e1e193f90c3236257651c2de6b154661e8471cc47fcbbdf520c7e569b764aa909cf0
SSDEEP

1536:D9QHMdj3i4u8IEyJMmSpQBpSLurIXkLyUeBPTF+MczDz8hFjWI2IIE:D4MxpIFamSpQBpS2IXkLz4cz/8h4VIIE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0a654823b21da67bbd72017275d34d9_JaffaCakes118

Files

f0a654823b21da67bbd72017275d34d9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

.shrink
Size: 52KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 8KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE