4415868633c92052476c3b030a714270_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4415868633c92052476c3b030a714270_JaffaCakes118
Size

115KB
MD5

4415868633c92052476c3b030a714270
SHA1

8703fffbbe9aa5de364fc5ebca072deeebe9f858
SHA256

c9b027bcca46af5f5c633b36b2680a7c70af46f1530cbe9c89afbcbc345163a8
SHA512

3cfd75ac904df32589cb21174b9547bebd74e689dcca498180b9fa0fa2be67442b5e22d7c76d815809b47f2f8a7343e9afc657bf83f178156721c17293e6b18c
SSDEEP

3072:7dhCXTxStJ4ZNeKUtwzG5BWCag1GVTHkSj5kvwDSRLa203:LJ4ZSiskg8+0YhRLa2u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4415868633c92052476c3b030a714270_JaffaCakes118

Files

4415868633c92052476c3b030a714270_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eceb2160c3fd62dbed656f56f89a7b04

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetTickCount
GetFileType
GetProcAddress
CompareStringA

user32

DispatchMessageA
GetMessageA
TranslateMessage

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ