37ceb922791510da6a90028b4a7bdeb9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37ceb922791510da6a90028b4a7bdeb9_JaffaCakes118
Size

20KB
MD5

37ceb922791510da6a90028b4a7bdeb9
SHA1

d4d9d23608f6dd63979ec58ebdd27bf410c49c5a
SHA256

d3c1336d44026e8dfa449c374561b078865a4b5a5f6a7fa642a229f4d5607c6a
SHA512

6a324d25893593c3971951614e95f11b8ad1665be8a98daa61fb2752ee872cea51d7a6e7ea22f02cdb32acf2ed03066a36532c62a04621418d6bc96788ea1d5e
SSDEEP

48:iA4N+yMGHpXyuJVKV51xjq8nV3NiWUfmJbfYBMheuJ8Gl:EPlym0V51pV3NxSqrY2heuXl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37ceb922791510da6a90028b4a7bdeb9_JaffaCakes118

Files

37ceb922791510da6a90028b4a7bdeb9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

917644b83e2ee95386e0d258cd3cbeb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

GetModuleHandleA
WriteFile
Sleep
CloseHandle
CreateFileA
CreateThread
ExitProcess
GetModuleFileNameA
GetProcAddress
GetTickCount
ReadFile
SetFilePointer

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 404B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 928B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ