ac293ddbb97a9b4eeb02fb756f740140_JaffaCakes118 | Triage

Sharing

General

Target

ac293ddbb97a9b4eeb02fb756f740140_JaffaCakes118
Size

213KB
MD5

ac293ddbb97a9b4eeb02fb756f740140
SHA1

b091334fba1b5466540b513bd458d6bc8dfecf4a
SHA256

1ec01f3b93491952e6f0bc3a94cc752a251de60991e4b4fdbe2a7d607122d393
SHA512

2029c3515241d136df0d0a13735f28ecfc6890f03edd0d35cc67df676a6234d3500d334d8971760c9201bbe40fa3e52fcc38d69e7882b791eb03412ec954f83a
SSDEEP

6144:AwRxlIAXOs5iHw4MSmz6fWnCyyFGhYTZqXcXoEy:h6iiQdSPfWkFTX4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac293ddbb97a9b4eeb02fb756f740140_JaffaCakes118

Files

ac293ddbb97a9b4eeb02fb756f740140_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: 117KB - Virtual size: 364KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1xtc1zb7
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lal7dh6.
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7972z4fn
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0uisysba
Size: 90KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

r1qeex93
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ