0e3dfbc462aa53ca365b4a7c4a49258e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e3dfbc462aa53ca365b4a7c4a49258e_JaffaCakes118
Size

127KB
MD5

0e3dfbc462aa53ca365b4a7c4a49258e
SHA1

6b2f05b321b15c5249b28152874726568f0aa239
SHA256

b460298de907b80f1b864579ac03d54dc2eb5bbf11b4144bc4a76a404cb05097
SHA512

ca8aeffc0f4d281e1e552954723740918df512344e2fc51e9038b7c570954dff4e4a79dfc085bac7325ef298cc375f5a133d536f2a58fae2e16524b83fc77ba4
SSDEEP

3072:qxhTKN0/Qzjc9w1USEHDyBO7qMyecATcbazTlZyQNKH:KlKek3ODyBO7qMyecYcuz/yx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e3dfbc462aa53ca365b4a7c4a49258e_JaffaCakes118

Files

0e3dfbc462aa53ca365b4a7c4a49258e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8afbf9211984274dc7a21b630ecae242

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
GetTickCount
HeapAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
GetProcessHeap

user32

MessageBoxA

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE