3a701d12c69810939c6ed452d8d0522a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a701d12c69810939c6ed452d8d0522a_JaffaCakes118
Size

19KB
MD5

3a701d12c69810939c6ed452d8d0522a
SHA1

5cc29ce22e534572e020de99f366e4f9e10a9e72
SHA256

155e4f8b67c74c91944662050171c25587ecc50544ad8298324756344b590041
SHA512

369e50bb90d14966421c08ccad65167c592634a703ffa710bbedec75440cdd05d805659f3e3d423b6dd4b55a7d9303af4f70824dbf7a724c012c5b8a4d50fc74
SSDEEP

384:iTnp1lma4WpNWd04OFAAe5sjhdvIvmWpCk/3M+cZ2+hRxyg:wpZxK24OuHsjhdvIOW9c46RxZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a701d12c69810939c6ed452d8d0522a_JaffaCakes118

Files

3a701d12c69810939c6ed452d8d0522a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

729e838be968fa14a71d465fced7267a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

MessageBoxA

advapi32

RegCloseKey

Sections

.text
Size: 14KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 640B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wyBw6IT0
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ