0d6c7953bb5da6572f456b364e70b2fe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d6c7953bb5da6572f456b364e70b2fe_JaffaCakes118
Size

34KB
MD5

0d6c7953bb5da6572f456b364e70b2fe
SHA1

0fb4b3b55e78578582e06f1ce9ff8183041c7618
SHA256

8ec6a3c1a7e464def0d919fd1501411754da7f2ca0f47a953a7a2b20e5fec285
SHA512

b416ce137c0a9c61eb98999086cf0428ec15ab89733fa3280aa4570c80c7c277aa74c1844eb0a116df5832a4137eee85c550cc99fcb459f73987c0c366ea2161
SSDEEP

768:Hm5iH3A6O+y195YW7mNliRTwJEXgVTFIL7Zk9GotI:Hm5A3Az19OWmNwZ2TFMNkDi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d6c7953bb5da6572f456b364e70b2fe_JaffaCakes118

Files

0d6c7953bb5da6572f456b364e70b2fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0dd28c30dea0b829fe2addad09403d7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLOpenStreamA
IsLoggingEnabledA
CoInstall
GetClassFileOrMime
AsyncInstallDistributionUnit
IsValidURL

gdi32

SetICMMode
SetRelAbs
ResetDCW
StretchBlt
SetDIBColorTable
UpdateColors
SaveDC
TextOutW

shell32

StrCmpNA
SHFormatDrive
SHAppBarMessage

Sections

.text
Size: 20KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE