da953b8c5f4125a63b6d84126a0ba673_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da953b8c5f4125a63b6d84126a0ba673_JaffaCakes118
Size

59KB
MD5

da953b8c5f4125a63b6d84126a0ba673
SHA1

0fee1bb26bb1b7893d92eeb609f68f9719c3af6d
SHA256

242c2f176bad58932859c540d042f06fcd42a9d0e820ff90acc70503c698dfaf
SHA512

e75f8384266cc5bb31bb971d8c4cca7ffbc8dbf2b661d3e1bb800f6aa297713a3a35bb90804a1715f0fed34572beff0a14ff7fba5503edf8f8d294dd322f7ab6
SSDEEP

1536:pe5jf+k45dNGukNR+BZQL8QgrVE2TZ1s:Cjb4PgukNABZLQwVV1s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da953b8c5f4125a63b6d84126a0ba673_JaffaCakes118

Files

da953b8c5f4125a63b6d84126a0ba673_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd67ff76768a53d84a088cc9eb98b701

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CopyMetaFileA
CreateFontIndirectA
CreateHatchBrush
CreateSolidBrush
DeleteColorSpace
CancelDC

user32

CopyIcon
CreateIconFromResource
CloseWindow
BringWindowToTop

kernel32

Beep
CloseHandle
CreateWaitableTimerA
DeleteFiber
DeleteFileA
DuplicateHandle

Sections

.text
Size: 39KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE