744d0374ba1ff6ee9da6944b8b5c6f02_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

744d0374ba1ff6ee9da6944b8b5c6f02_JaffaCakes118
Size

262KB
MD5

744d0374ba1ff6ee9da6944b8b5c6f02
SHA1

9736180abd3a473bd6d72dc87d889439aca434c5
SHA256

dd29401814cd0262372c531eb18615bf0cb95a305bf583210e9b1310684942fe
SHA512

abc227cc59ef348f3a3a9e17e70e451315938dfde8759399452cbf50c2335f6de3495920eba8664e3f2c5430da3bd63009506265069bcaf9d1f3300773f8ba84
SSDEEP

6144:VqON5CR9COmWaMXV5hq/lkVOubCA9HU2Sa6THSo:V/TqzZXXhYkVbCA9HUcgHr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
744d0374ba1ff6ee9da6944b8b5c6f02_JaffaCakes118

Files

744d0374ba1ff6ee9da6944b8b5c6f02_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d537956f452a08bfb14720fae0dc52dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCurrentDirectoryA
GetModuleHandleA

user32

MessageBoxA

gdi32

EnumFontFamiliesA
GetGlyphIndicesA

Exports

Exports

GetDrtpRDS
SetDrtpRDS

Sections

.data
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ