69e7fc11e08e636753bc1d638658bc59_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

69e7fc11e08e636753bc1d638658bc59_JaffaCakes118
Size

36KB
MD5

69e7fc11e08e636753bc1d638658bc59
SHA1

df68a8aff7dc359e1a204b35a268a4ade6a4aff1
SHA256

6c706a3e0a68d2e2a656413337eb10a726cb2f405f268766a70e78714b14319c
SHA512

be8c49fbad9960bdfbd0e152d67aa30a4dc7a1ab9bb7fc6ff9b2e92b2e6d6be399c363909df040c079e94092de63083edd90f5a8984cef7b7b3fb8e3ad842564
SSDEEP

96:dSb6j3E9AlMjOh8owPro10Ihhg54Vs8tWSkDPtboynwTCtY:jg6MwXwPKlhxsUWTDP1oynwKY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69e7fc11e08e636753bc1d638658bc59_JaffaCakes118

Files

69e7fc11e08e636753bc1d638658bc59_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3d0e5bb0bad44a5e58b77f8275e99ee0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\ pdb

Imports

wininet

InternetCloseHandle
InternetOpenUrlW
InternetOpenUrlA
InternetReadFile
InternetOpenA
InternetOpenW

msvcrt

_exit
_XcptFilter
exit
_acmdln
fclose
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
memset
_except_handler3
_controlfp
srand
rand
_wfopen
_snwprintf
__getmainargs
__set_app_type

shlwapi

PathFileExistsW

kernel32

Sleep
GetStartupInfoA
GetModuleHandleA
ExpandEnvironmentStringsW
SetFileAttributesW
DeleteFileW
GetTickCount
CreateProcessW
CreateFileW
CloseHandle
WriteFile

shell32

ShellExecuteW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 246B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ