ef47490b9884736f187dbeae1a042248_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef47490b9884736f187dbeae1a042248_JaffaCakes118
Size

480KB
MD5

ef47490b9884736f187dbeae1a042248
SHA1

0bfcca3c3b3e2ba44c3ecd4dd7c50e31c44131fe
SHA256

7c39b681953d1fe73c774cb4e2f583d56478fd2986c86985f830ffc60e819a7c
SHA512

b3f762338551f8bb79a0ac8b8636780bc60ee9a8537cec8bfc70dba6a8e750a05c2ed4aacf664746a59d865e21816e5a44dfa632a238c307be8233048e5564dd
SSDEEP

12288:eiRUjZ3PEucAl9cxbLXJO0DLPHLIZvikFB34cfVc:PRUjlEMiHXJvDLDIfvocfV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef47490b9884736f187dbeae1a042248_JaffaCakes118

Files

ef47490b9884736f187dbeae1a042248_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

.VV2
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VV2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VV2
Size: 442KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.VV2
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE