16c81f5a3babf87b15a2feaafa5d87db_JaffaCakes118 | Triage

Sharing

General

Target

16c81f5a3babf87b15a2feaafa5d87db_JaffaCakes118
Size

24KB
MD5

16c81f5a3babf87b15a2feaafa5d87db
SHA1

b53ab7bc9b6833b2060b6e068c2b0bacf75752fe
SHA256

19d8c5263b665194a93dccd0d02ce083a1b6adcec2388b96d2cfe8d8f64fd240
SHA512

54144910ddfb65ef7d5739dfad79b3ef38b7462e9508d36b1a75b004bea47acc0ccae72475761f7fbba6155938db26bdf7cc82bb0525850c532f70c95b9585d8
SSDEEP

768:uV46ZLCTT5drM/YReAWP1eibNbBg7mimmw:sLCTj3RRWPoibFBs7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16c81f5a3babf87b15a2feaafa5d87db_JaffaCakes118

Files

16c81f5a3babf87b15a2feaafa5d87db_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9dea281c4714e6b6df58ec3c3afe8f76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime

user32

DialogBoxParamW

Sections

.text
Size: 19KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

dwff
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ