115a4689ee830e890ef16049e31ad05a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

115a4689ee830e890ef16049e31ad05a_JaffaCakes118
Size

79KB
MD5

115a4689ee830e890ef16049e31ad05a
SHA1

0a714676a830d7b8d3b7e98ac81b9f09ecf8ea86
SHA256

bd8c3cf10bf28d27939da0b3ab7ddf0e49a5371bd08eb2551eaea83c31b4c613
SHA512

191a01444393cc64c9e328911b12ac73a12405e5d758ace157ad4ccc7e8bca3583dc2e6aa4e0b91f7a17f36702f2eed14d8387c6c52d3452d1231fdc149f375e
SSDEEP

1536:1iBkmn4DeZZvO/QR/HF6g5zl7xsLiqPlSfzybEbaO7g3yt9p:1Bm4DSlR/lBf+ZPUf2bO7g3m9p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
115a4689ee830e890ef16049e31ad05a_JaffaCakes118

Files

115a4689ee830e890ef16049e31ad05a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

Size: 44KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 17KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE