39f2cb6dcc35750934d7bf7e36905b7d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39f2cb6dcc35750934d7bf7e36905b7d_JaffaCakes118
Size

544KB
MD5

39f2cb6dcc35750934d7bf7e36905b7d
SHA1

46a64e67111f1fb478cb39f50f868ed6204c1dc7
SHA256

6df7922f604a939125636e37fa7d964c4b59aadb5e65a19327bb39f764e89569
SHA512

9188fd4baf52eb27153752cd35283b49f955f4934b22c76c475b65158f7677bbdc57a2339d857e8e55739494b8c31a7597e5f40ed45e025336c96a5b679efe02
SSDEEP

12288:YA6Mix4y7EQIpEoVwuA5RacEntqD71bVoG0ymyGBnS:YA6Z4sEQIpEo2H5RRktK7pVX0FtS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39f2cb6dcc35750934d7bf7e36905b7d_JaffaCakes118

Files

39f2cb6dcc35750934d7bf7e36905b7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9a998fa24aebc1be560265dc593ddddc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetStdHandle
GetCommandLineA
Sleep

user32

GetWindowTextLengthA
DrawTextW
CopyIcon

comctl32

ImageList_DragEnter
CreateStatusWindowW
ImageList_EndDrag
ImageList_LoadImageA

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 529KB - Virtual size: 529KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 485B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ