274c442eda2b97500c6425a974917f1e_JaffaCakes118 | Triage

Sharing

General

Target

274c442eda2b97500c6425a974917f1e_JaffaCakes118
Size

37KB
MD5

274c442eda2b97500c6425a974917f1e
SHA1

50cd7121f90afdf1f0b9ae74bc68f176bdad348a
SHA256

bd4c13510896b37df50b75f1f65aa1d6d07ba94e115454657859c1a1b35982ea
SHA512

23ce2cbbf1fd8927e7699e29d50b0a7b48b5f3599361676facd7b4cd3f9c4ac4a32b797d57197a4bf41ab4a330fca152b0b8ff54a4e1a431f4ed4b6f84e7fa87
SSDEEP

768:lLBhhD5AlAGDZeRDAKkX4I6MkDkR56N7fACNkLIOjtWxD7C2:l7hlycADIgkBoCN2sxS2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
274c442eda2b97500c6425a974917f1e_JaffaCakes118

Files

274c442eda2b97500c6425a974917f1e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE