fe503edef80be34b597f60ffb54da6c1_JaffaCakes118 | Triage

Sharing

General

Target

fe503edef80be34b597f60ffb54da6c1_JaffaCakes118
Size

47KB
MD5

fe503edef80be34b597f60ffb54da6c1
SHA1

d603cb2011d4937d03f021775412e76d105437e8
SHA256

c1e2d5624b0c54d2b567854892bac8ef4f3729a76850012a9e58204600d67cf5
SHA512

fe858fcfb639bbe4e541fd47089faa015597b306406ff5f2c29d331febb3c2eac15921c4678c26e89b62e9c865bf5b36ff4689fa5ad91ac4a6b4f75c72d9ed0f
SSDEEP

768:frKyunLqyb2v+zjJXudOr4su8N7o929WqXQyWzP7mLs4yk2F9n7a+/ExGk1bRG7a:TKyJyyvENudOcsuKI2NQyWzP7mLsP8xH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe503edef80be34b597f60ffb54da6c1_JaffaCakes118

Files

fe503edef80be34b597f60ffb54da6c1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdbfec85672f73d2a4d49635454936d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
ExitProcess

user32

MessageBoxA

Sections

.1111
Size: 44KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.333a
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.444444
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE