078da211d388840f44c59e440cdb2af4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

078da211d388840f44c59e440cdb2af4_JaffaCakes118
Size

35KB
MD5

078da211d388840f44c59e440cdb2af4
SHA1

18aaa4a131ab8f7dfeb718567cc4c3b16b14173c
SHA256

acb7f8c4c7e84349940a13a11c5fbb1b8a326b2739383217d837bef1d384a96e
SHA512

5b93d092b56946b6c117d68efe24e771219cbdbea9d37aec7abc816f22326ab6f5d45a4704152bcb7b06a747d834a047c20e126bfb6e7216d0afa507e85d96e1
SSDEEP

768:NTrc2pJDhHrNiXXd62pFIg+CTn+iMIN39Io+bmMz+pge:NHdrkHUivn+I/5MSpg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
078da211d388840f44c59e440cdb2af4_JaffaCakes118

Files

078da211d388840f44c59e440cdb2af4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c372311534116eeffdf56f3f6c69c5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
ExitProcess
GetProcAddress

user32

wsprintfA
MessageBoxA

Sections

.text
Size: 21KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tqn
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nPack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE