41856dc64ba66260f91c198bbb35ab23_JaffaCakes118 | Triage

Sharing

General

Target

41856dc64ba66260f91c198bbb35ab23_JaffaCakes118
Size

63KB
MD5

41856dc64ba66260f91c198bbb35ab23
SHA1

20bb79fc00847235a62edb31892546a409c95623
SHA256

1a3de9aeae10275da11931ff70401f9cec667dfb7771dd562fdf7cd55729eb2b
SHA512

64594dfff1b7081ec22d8fc54e7cc5b7dc391a53e4d8593e6a45fc2e9dc4a0e863196d66c3b98d8be12458819100bb41645c37adb32685369dd2f2d3e4b5c1b8
SSDEEP

1536:u2m3CMrdcTzg+wXVR0d5FGz1fSMPYL9NbOBLGyluwp:u8Mr6TzG2d6zVTYsUm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41856dc64ba66260f91c198bbb35ab23_JaffaCakes118

Files

41856dc64ba66260f91c198bbb35ab23_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6e0a0e3e385efb6f386738d204b00a19

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetPixel
CreatePalette
SelectPalette
CreateDIBSection
GetBkColor
GetCurrentPositionEx
CreateBitmap
GetTextAlign
GetClipBox

ole32

CoCreateFreeThreadedMarshaler
CoDisconnectObject
CreateStreamOnHGlobal

comdlg32

GetFileTitleA

kernel32

IsBadHugeReadPtr
FindResourceA
ExitThread
VirtualAlloc
ExitProcess
LoadLibraryA
FormatMessageA
FreeResource
FreeLibrary

user32

EmptyClipboard
GetMenu
GetActiveWindow
LoadIconA
DrawIconEx
OpenIcon
DrawTextA
DrawMenuBar
EnableMenuItem

Exports

Exports

DrTtS
_uJy9ABi__PHhf@4
_iWxodCg@12

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ