63410cbaa9bf6f91a3ac623b383a09f5_JaffaCakes118 | Triage

Sharing

General

Target

63410cbaa9bf6f91a3ac623b383a09f5_JaffaCakes118
Size

118KB
MD5

63410cbaa9bf6f91a3ac623b383a09f5
SHA1

5091ebd4736df6637f117e6c0ef81ca2fade255d
SHA256

c4a7dec65e6d614855b57a6208ef56d70a9e1e6fe83b73e7399a69a6be5a46ca
SHA512

0f43060c4f559b1f3e64a487c85c3928afa6d09045182b9a66fb886c86e11fb1cfc349d847f38a037df759a171dc5035e9ec9c49cccce53426e7607226c53709
SSDEEP

3072:j7lTNX08UZI+GeGW2ppq5idGMUzZKL4X96pwq:j7883+G1pM5JMUkL2e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63410cbaa9bf6f91a3ac623b383a09f5_JaffaCakes118

Files

63410cbaa9bf6f91a3ac623b383a09f5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

249b0d5016492a44b0bf2b5af11393db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawStatusTextW
DllInstall
ImageList_GetImageRect
ImageList_SetFilter
ImageList_DrawEx
InitializeFlatSB

kernel32

GetCommandLineA
ExitProcess
CloseHandle
CreateFileA
CreateThread

Sections

.text
Size: 68KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE