3956f5b76b6ad9e3bfc243218e4c642b_JaffaCakes118 | Triage

Sharing

General

Target

3956f5b76b6ad9e3bfc243218e4c642b_JaffaCakes118
Size

33KB
MD5

3956f5b76b6ad9e3bfc243218e4c642b
SHA1

dad392b936670fb6a06755ae01f5c8936d016beb
SHA256

924e5c24e34480bbf3bde76fdf3f5fc63294b43b08e11c26dec6d5cb4f42ee65
SHA512

1efd9e0260af9e64a25bd420e0d49d44069271191ca71457f9d4d544a33e8009b8dd43f6fdf8196c33500b63468de86b53706ec4912c9729265ce156a4e516f6
SSDEEP

768:E8nJPqsirHY2wAZ7nqgK6QZXOVge4Ri8XgEuB:FCXrHY0Z78jAVg/5gEuB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3956f5b76b6ad9e3bfc243218e4c642b_JaffaCakes118

Files

3956f5b76b6ad9e3bfc243218e4c642b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ee2bf920917f70362b3e8f39d6bc150a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
LoadLibraryA
VirtualFree
GetProcAddress

user32

BeginPaint
GetDesktopWindow

gdi32

GetPixel

Sections

.text
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

dfd
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ