03a0239a1955898875591136ffb5a04c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03a0239a1955898875591136ffb5a04c_JaffaCakes118
Size

720KB
MD5

03a0239a1955898875591136ffb5a04c
SHA1

e573417eed247cc77d8c4cd3d7cbe8841725155d
SHA256

7e9a7b37bb5b58f0f84d43d24590bf16211adb2f940e984c08ff8dd9ab1be6e2
SHA512

cf1ad7ff965cd9629ca4e8d8eeb125d7efd3e8420b30c6869795657bd9d8ca41be0a84d9dbf0b5e9316764f5fc2dcbcb0ee252c73838ed46983bc7d0cb88f5e3
SSDEEP

12288:KR1P/TIXrXZt/sCqO7VP6JLatAJmmIxT4kRqca7qDBD94qEqY2hRz6lz1CbGr/jj:KRdSXnUa7aGtAJjIxT4CWqlD9lhRz6lL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03a0239a1955898875591136ffb5a04c_JaffaCakes118

Files

03a0239a1955898875591136ffb5a04c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

45096b1d1a27623ec1b288b8a77cd644

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lopen
ExitProcess

user32

MessageBoxA

Sections

Size: 528KB - Virtual size: 528KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 48KB - Virtual size: 656KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SETTEC
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE