41eca7d9f44fec18b13a7c0be03c995a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41eca7d9f44fec18b13a7c0be03c995a_JaffaCakes118
Size

80KB
MD5

41eca7d9f44fec18b13a7c0be03c995a
SHA1

ffe1a5e2e6a460c30a619deefcda1bea152d2787
SHA256

19addc29a3c06e634c567b6d9ccce3be300f35c5d813c35d737925c4bfb0d56c
SHA512

b2c4f1e8310c0c548ef9fba3b80ae07189e93153208a14948ef862cb880485a1c0de81b98e7227291a8443d426214d14581264f76d02bde3c3e938fd6738ea0d
SSDEEP

1536:I+WqRdgeXoROhqJgYOE46ibAhP67boRgTCwywoKxXH:4qbkf5OANR4Cpw5H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41eca7d9f44fec18b13a7c0be03c995a_JaffaCakes118

Files

41eca7d9f44fec18b13a7c0be03c995a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4c0e98dcfd9f47c0e1a5349b7be8b53d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyIcon
GetScrollBarInfo
RegisterClipboardFormatA

kernel32

VirtualProtect
GlobalWire
GetLastError
_hread

gdi32

GetFontAssocStatus
GetCharABCWidthsI

comdlg32

WantArrows

Sections

.text
Size: 4KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE