JaffaCakes118_955b74dfb09b447254f29aab492ce709 | Triage

Sharing

General

Target

JaffaCakes118_955b74dfb09b447254f29aab492ce709
Size

281KB
MD5

955b74dfb09b447254f29aab492ce709
SHA1

46e98f0ea9e3274ec3411c7550edcbcf9d99039e
SHA256

d6c785ddd37a6cb6c0d6cbdd3dea85bb58e14c21e6969891bcf32c66a601c1be
SHA512

2d52a9824c9bf3eaeb666e70df2a2f4029a55765bcfdc27dde8067afc22747f7f40a0c5c63d5b45f3e0b7298e45a14eefcce795f4448986fa6bfcee4eb782677
SSDEEP

6144:Hb30Xv5Mq6KhWOqjn2yDwsTA6FdcP2ovWZ3jmodsFljac:Hq5ZVWOqjnpDdAedM7v+hdklja

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_955b74dfb09b447254f29aab492ce709

Files

JaffaCakes118_955b74dfb09b447254f29aab492ce709
.exe windows:5 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: 117KB - Virtual size: 364KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6np43745
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mstjyprb
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4p.wu5zm
Size: - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xtxd61bm
Size: 158KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mij7ij7r
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ