093198053d060758a7322bb36c770c07_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

093198053d060758a7322bb36c770c07_JaffaCakes118
Size

38KB
MD5

093198053d060758a7322bb36c770c07
SHA1

72cb0f5dce7ee03049ca32e032896f27358147c0
SHA256

996ae32c17e0ec36dc444b94f7e991d0715d9755356e540fa7430109a9347f16
SHA512

fdad89461ad9374d61018aadffac636b57ae2236165dc9bdccef5c73970fea8b6bbb6248a55136ae2f9250bb1d0458911c1dd2ce29ebd144aa74d0cdb39daf52
SSDEEP

768:i9NgvsVgZGPlLsreUJDNds+QieroPrPAfw4qdNpKt12IgWU5OeSH:i9uv4lVsZ7QcLUq/E+VSH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
093198053d060758a7322bb36c770c07_JaffaCakes118

Files

093198053d060758a7322bb36c770c07_JaffaCakes118
.exe windows:1 windows x86 arch:x86

fd878ae895bc591075ffc36d820304e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCloseHandle
InternetConnectA
InternetGetConnectedState
InternetOpenA
InternetOpenUrlA
InternetReadFile
FtpPutFileA
FtpSetCurrentDirectoryA

kernel32

GetComputerNameA
GetEnvironmentVariableA
GetLastError
GetTempPathA
GetTickCount
CopyFileA
RtlUnwind
SetCurrentDirectoryA
Sleep
WinExec
CreateMutexA

advapi32

GetUserNameA

ws2_32

gethostbyname

crtdll

_iob
_itoa
__GetMainArgs
_strnicmp
atoi
exit
fclose
fflush
fopen
fputc
fwrite
localeconv
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strstr
strtol
wcslen
wctomb

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE