45167f5e0abab251b658b4857363f157_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45167f5e0abab251b658b4857363f157_JaffaCakes118
Size

5KB
MD5

45167f5e0abab251b658b4857363f157
SHA1

809d916f748c4a386f971ff0ca74da3f3b9605d1
SHA256

cef65ce3c683b4c210eb27f5efa7c2ec21d26c045a804b4546333249fbee30b7
SHA512

60bfe2863bbe9f9f8bc3b35fb4084602028276019d652be19995d7f01d920b50878dbffe46d6de1bfcfbe87d6ace2d83f9524b61fa027f5f0d6a2a170002d924
SSDEEP

48:KDkB69PIBDFRFxo9hbatdAj7B9Ez4Xn7qemFWESnC2Pscqi4rkfe:3jPW2tdojEzQn7qemFWJCAqi4wfe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45167f5e0abab251b658b4857363f157_JaffaCakes118

Files

45167f5e0abab251b658b4857363f157_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5112e2fbe44019cd36edb55543a136e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

WriteFile
CloseHandle
CreateFileA
ExitProcess
SetFilePointer

Sections

.text
Size: 190B - Virtual size: 190B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 236B - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iweiha
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE