eefae23af62a6c352cfe5f1f3ef6e1dd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eefae23af62a6c352cfe5f1f3ef6e1dd_JaffaCakes118
Size

82KB
MD5

eefae23af62a6c352cfe5f1f3ef6e1dd
SHA1

ec32bcf41a8a5787b2530262124a56fdd1f19c58
SHA256

81030ee694bd0fbb02ecf63e0e5faf983235b9e7aac5ed73c25fdcb63f75d4ad
SHA512

32e070fec0672459b67f32945f1d90b7ec0bc5be8dca2302c84d62f65f9fe46342d56b8db6ebfbb840e79134ea788d247cd3e90d01e7643f14e239f21678268f
SSDEEP

1536:2zp6OJ4DqTv3n8tnpBSTBiiuzDdi07++++++++++Xm++++++f+++++++++c++++Y:on/PDsiuzDdi0xNHUPQ6AQmL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eefae23af62a6c352cfe5f1f3ef6e1dd_JaffaCakes118

Files

eefae23af62a6c352cfe5f1f3ef6e1dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

99f5b0b723d6fca2813f516623081e1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
VirtualAlloc
ExitProcess
GetProcAddress
LoadLibraryExA
GetModuleHandleA
VirtualProtect
GetModuleFileNameA
FreeLibrary
GetLastError
CreateMutexA
LoadLibraryA

user32

wsprintfA
MessageBoxA

Sections

ibfa1
Size: - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ibfa1
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ibfa1
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ