3d1cc3406ebc9ffa692640643c9e4fee_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d1cc3406ebc9ffa692640643c9e4fee_JaffaCakes118
Size

119KB
MD5

3d1cc3406ebc9ffa692640643c9e4fee
SHA1

e02da856c5c4678f04678e8c455ffef4847be779
SHA256

e0d8f30f186b2ef0422589b945f94f8311d584ef9d5a0d3277c6e34e4e961dab
SHA512

e3350d81a3b4490d2c33ab0a0c3a97f9db30ae9fcff094418600f6873f8cf6a98b1037ba89ee8c1d110dff2e5186561e9b18867f4fa606aba7c27ed62ba4eeb4
SSDEEP

3072:ap9nZw4dPqQo/hljdaNqciP6FS7LA4tLICXgfpEZ:arnXdyQo8qcYnA4tICipe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d1cc3406ebc9ffa692640643c9e4fee_JaffaCakes118

Files

3d1cc3406ebc9ffa692640643c9e4fee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

871f566131c40f544851d687e3ef38f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
GlobalAlloc
GlobalFree
LoadLibraryA

user32

MessageBoxA

Sections

Size: 80KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 31KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SoftComp
Size: 904B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 249B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE