e27ac139e796ee087bba69d4b214279c_JaffaCakes118 | Triage

Sharing

General

Target

e27ac139e796ee087bba69d4b214279c_JaffaCakes118
Size

53KB
MD5

e27ac139e796ee087bba69d4b214279c
SHA1

40201f10d8967ad6b264e032efe86210835fd1d6
SHA256

446b66e0a2cd33acaac4b117d1cd99444547bcb7089248d1fee49cad27cae939
SHA512

d569399eb841110c7b894e040734568446134e94626c99b07dea1ed4ef74523b2ac811d6c2c586b28a1f99545b499215cc5dd907d0595f0cc58f1b8b24bedb6b
SSDEEP

768:oU5TFLGkP6rn6wlLeMlmmwI2E2Ql9lSQfK5aXOMOjAAJAyF366BykSYeTbhHAgqq:FXiP6wpeMlmmwI2emQ4EsAz6hOrv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e27ac139e796ee087bba69d4b214279c_JaffaCakes118

Files

e27ac139e796ee087bba69d4b214279c_JaffaCakes118
.exe windows:1 windows x86 arch:x86

59496976c9314c1aff06228bc7cc0b86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

WSACleanup
WSAStartup
closesocket
connect
gethostbyname
htons
send
socket

kernel32

GetCommandLineA
GetModuleHandleA
RtlUnwind

user32

DialogBoxParamA
EndDialog
DefDlgProcA
GetDlgItem
SetDlgItemTextA
GetDlgItemTextA
SendDlgItemMessageA
CheckDlgButton
IsDlgButtonChecked
LoadCursorA
RegisterClassA
EnableWindow

crtdll

__GetMainArgs
atoi
exit
memcpy
memset
raise
signal
sprintf
strchr
strcmp
strtok

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 688B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE