389a61b02f4e859a0a46e8b269904a36_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

389a61b02f4e859a0a46e8b269904a36_JaffaCakes118
Size

31KB
MD5

389a61b02f4e859a0a46e8b269904a36
SHA1

f68bb66685b4df55e4c43f9c60e7b31beed34b41
SHA256

df23d36295351a494986743c081e9256ccd13731265dcf0af48f47f3af65c688
SHA512

469f8a10a1595d182524ddf6022b4d6993f0847a8294d2d8c87530e5f12426c36fc3ed1d6946ce1e89f52f08acdb50d25095dab9fd3809c7a52f0e7d5bc713c1
SSDEEP

384:/TzTBeDYLrsPWak4phrYFbiuEoj6MEpkVET3LiyyOaC+bhsnNDbhW:/1eDY0Pz/cwujj6dL4OaCKsRbhW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
389a61b02f4e859a0a46e8b269904a36_JaffaCakes118

Files

389a61b02f4e859a0a46e8b269904a36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

.text
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE