e2b93204ec865f7c2c33e3a7f9c937b3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2b93204ec865f7c2c33e3a7f9c937b3_JaffaCakes118
Size

44KB
MD5

e2b93204ec865f7c2c33e3a7f9c937b3
SHA1

4330f9fbd655639c9acc2a00f767e96e311165bd
SHA256

9ccdceeec2762bafccc1877802c08ac20ad842c17863a7a7450dce81b2f0c438
SHA512

c05fd9627438aed615a22a22a215ab00ac496c7859c4df3f90b8757dbec444770602140527bb7a1f3ef7650cf65b7d3290208eaa516da3708bb51e7527c46a1b
SSDEEP

384:scYOA0w9BN3gE5L36di3KdeGbgxL372tgXiC2qyyrwmghy6A12v1qo1gAw+:scxwNwQL36dBy6tgFeHhXAE1qo1gAj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2b93204ec865f7c2c33e3a7f9c937b3_JaffaCakes118

Files

e2b93204ec865f7c2c33e3a7f9c937b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b1b3c9e219d13bf5c670f7680cfb643a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
CreateFileA
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
DeleteFileA
GetTempPathA
GetStringTypeA
LCMapStringW
LCMapStringA
ReadFile
SetEndOfFile
GetCommandLineA
GetVersion
ExitProcess
HeapFree
GetLastError
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
HeapAlloc
VirtualAlloc
HeapReAlloc
SetStdHandle
FlushFileBuffers
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
GetStringTypeW

oleaut32

SysAllocStringLen
SysFreeString

urlmon

URLDownloadToFileA

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE