0848532b73febd3f48b53a1eb26a8e8e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0848532b73febd3f48b53a1eb26a8e8e_JaffaCakes118
Size

53KB
MD5

0848532b73febd3f48b53a1eb26a8e8e
SHA1

af7ebbf1a8a66a4791099d76ca48235815f5d440
SHA256

d761f372b125aa45598f229d4f23fe5c7a2f1b7ada20e11f787494244c0cbed3
SHA512

86d5138ba9f309761699a7243d2781693edbb576c1a9736b4f762e15dc49e63c9b763f3db8d4622087bafa7972b000c52bc437c640cd845db72b093d22cfd1ba
SSDEEP

1536:IRXC7A7v8VfkdDm1B0Q/KT+jruJLL2Xw9h6ZNm:IRXwAT8dEm1B0JIrK2XwWm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0848532b73febd3f48b53a1eb26a8e8e_JaffaCakes118

Files

0848532b73febd3f48b53a1eb26a8e8e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3b6e3b0f276cd8981b021d6bbced6749

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess
GetSystemTimeAsFileTime
CloseHandle
GetStartupInfoA
GetModuleHandleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 48KB

IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ