59fb402eb4d2a1146a256b7b5669bd2f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59fb402eb4d2a1146a256b7b5669bd2f_JaffaCakes118
Size

59KB
MD5

59fb402eb4d2a1146a256b7b5669bd2f
SHA1

c5abe8ae7dc56be2ccb6a7ad61741002ffaee536
SHA256

07b39fe939d50276f068de98f477a244865e3652c3442fc425cabfa1d87bfe7c
SHA512

a362772475facebbd778cd5a6ca6fe8521c0c19ecd98c6c315f5eecff362882582a747be7fa68f4cdc41d84bb9cc01af793dd613c588e3226fe806a76eda990a
SSDEEP

1536:oOTrmHkWVhILUJRQPVZ8/by9w9tnGCRyvb+/:fmEc8PEy98GCYjK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59fb402eb4d2a1146a256b7b5669bd2f_JaffaCakes118

Files

59fb402eb4d2a1146a256b7b5669bd2f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd67ff76768a53d84a088cc9eb98b701

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CopyMetaFileA
CreateFontIndirectA
CreateHatchBrush
CreateSolidBrush
DeleteColorSpace
CancelDC

user32

CopyIcon
CreateIconFromResource
CloseWindow
BringWindowToTop

kernel32

Beep
CloseHandle
CreateWaitableTimerA
DeleteFiber
DeleteFileA
DuplicateHandle

Sections

.text
Size: 39KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE