02a777e541a9e3b2f5aadc04d28b2909_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02a777e541a9e3b2f5aadc04d28b2909_JaffaCakes118
Size

20KB
MD5

02a777e541a9e3b2f5aadc04d28b2909
SHA1

5b640902d7ea27323a4bb1b52464442a89e7c373
SHA256

fe9f82aa43acfbde8f9cc75924a15ad12a7c6b428629d59c50848c13d767597a
SHA512

2278ae2efe77869bb304c0f7e6fca47300ab3f8f261e8d3ad5cbce9976b9bb543372ab849ac17c34955d23a3d966916c56b6c1fdfb79a5602a90c31b6c884f3b
SSDEEP

192:nY6lqfaCgOKUTTqxh7r9ZJ4+5vYToBrUEBF0tvP4oynwAY:PMHgOKUTTIr9ZJh5vaIB30t34vY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02a777e541a9e3b2f5aadc04d28b2909_JaffaCakes118

Files

02a777e541a9e3b2f5aadc04d28b2909_JaffaCakes118
.exe windows:4 windows x86 arch:x86

84f934a4711055c4f92d4626e3fbf6b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
GetCurrentProcess
GetModuleFileNameA
lstrlenA
Sleep
DeleteFileA

user32

ExitWindowsEx

advapi32

CloseServiceHandle
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
OpenSCManagerA
CreateServiceA
RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegSetValueExA
RegOpenKeyA

shell32

ShellExecuteA

wininet

InternetOpenA
InternetOpenUrlA
InternetCloseHandle
InternetReadFile

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
printf
_CxxThrowException
putc
getc
memcpy
fwrite
fread
fclose
fopen
rand
strcat
strcpy
??2@YAPAXI@Z
free
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE