39e5d77a2046bb1a23b6f5575030b3d3_JaffaCakes118 | Triage

Sharing

General

Target

39e5d77a2046bb1a23b6f5575030b3d3_JaffaCakes118
Size

79KB
MD5

39e5d77a2046bb1a23b6f5575030b3d3
SHA1

e3ea2de630ca756f6f5a28cd0fda9f21d988983a
SHA256

cdf69bcbacbaaf7fc507a6ea5481dc9bd2482eb242dd4afe6ed60e1cc6a3b23e
SHA512

db99c1a75a23bf7270a95d16263c87e0fb9bdae5df90e1b4ca5960ec8a99132172324544d97efcdf70cd29ee0ecf0654813680f6ec30b65a21e0a585b6ca6e6a
SSDEEP

1536:NFXiqgYc+5zt35zZ+FqlIW5O+Xs3nQbipzSOVu49+m176666Kq:0gt3H+FqlIWM+8360VVT6666Kq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39e5d77a2046bb1a23b6f5575030b3d3_JaffaCakes118

Files

39e5d77a2046bb1a23b6f5575030b3d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be62b249d20f3d854d81c0697547576d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageW
HeapCreate
SetUnhandledExceptionFilter
IsDebuggerPresent
MoveFileWithProgressA
FileTimeToSystemTime
GetLastError
lstrlenA
MultiByteToWideChar
HeapAlloc
GetModuleHandleA
HeapFree
SetStdHandle
TlsAlloc
TerminateProcess
VirtualProtect
ExitProcess
GetFileSize
lstrcmpA
GetACP

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ