fcea0268e108c50b2de6208678c79ef7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fcea0268e108c50b2de6208678c79ef7_JaffaCakes118
Size

91KB
MD5

fcea0268e108c50b2de6208678c79ef7
SHA1

f445679d3cac0d15fde99b5c3eb489551b928cf6
SHA256

46a94a88da268354d5b675b845b80332e9f6e1d41868109268813d288c283eed
SHA512

f915896b357c102851dc79cc3f94092b95c556949c45369a105097678c14c40b31a1762203b1ca32171223f23327ea8cee2a99d7b6f228114cf0f83cad85ac9c
SSDEEP

1536:xW0vy9i8xQJmK7EJ5YZhinN+fVUl2JFvgW7MYW/RYUFrqeL3ssUNv:Y0vP8ys+EJ+ZK+fqP9RYUFrqQs7v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcea0268e108c50b2de6208678c79ef7_JaffaCakes118

Files

fcea0268e108c50b2de6208678c79ef7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c372311534116eeffdf56f3f6c69c5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
ExitProcess
GetProcAddress

user32

wsprintfA
MessageBoxA

Sections

Size: 62KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE