16588427c677fd8e93b1c3ad475a1d0c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16588427c677fd8e93b1c3ad475a1d0c_JaffaCakes118
Size

36KB
MD5

16588427c677fd8e93b1c3ad475a1d0c
SHA1

968a973ee3dd11c2d821a661cbd6970b9d10789d
SHA256

5dbdc3748c2c2c177aa751a5a6b7b0ec5d604723bf3c0161667be86e4e144664
SHA512

ed8cf04ec7416c40916bedf7f18837bdac3aabba32f83c90ac609131dfecdea533434d144e923f059225efe5757b5c23d5f96d9722c343036569961ad8331fc2
SSDEEP

384:mpNrGX0jpw57AYuOgnsb3ZsUXSyrp4tP1Ldf/GTNZFuSJKVCODHrFtrp9Mm:mpNaX0jpnKN5dp4tCTNZUVCODhtp9M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16588427c677fd8e93b1c3ad475a1d0c_JaffaCakes118

Files

16588427c677fd8e93b1c3ad475a1d0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a7f59364d54ef6f04deee30324e9b8cf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
CompareStringA
GetProcAddress
GetTickCount
LoadLibraryA

user32

DispatchMessageA
GetMessageA
TranslateMessage

advapi32

RegCloseKey

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ