49dd916cdcfbd8535d84259cab3bc33a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49dd916cdcfbd8535d84259cab3bc33a_JaffaCakes118
Size

60KB
MD5

49dd916cdcfbd8535d84259cab3bc33a
SHA1

104d6f41f318cd0070f0e176fbbd39fbdb24b05c
SHA256

473679f03cb90c5024fc9ed6e26c36a0976ce29633a18651fd296615c6a73b42
SHA512

9c68fcf234fef5bd7406b03f19b063cb963e471990d830df85ac2e13f134b1b51d8539aca4ce07e81c5e8b75e1632351210920be7264c213fb68f2418f9f2ee0
SSDEEP

768:K51SRRwVkT8CGC2phLZp6TIFKUL7T6JMNP2b8ET4wuRy9rjj04kb9rp/6hj1Quwc:KERq4Px2HqTsd7T6Im4w15kbX/67kc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49dd916cdcfbd8535d84259cab3bc33a_JaffaCakes118

Files

49dd916cdcfbd8535d84259cab3bc33a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

af51d604d21597aeceadeb95370197ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
GlobalFree

user32

DrawTextW
DrawTextA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 62B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ