1798406cc108872a0a5e748b021ce142_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1798406cc108872a0a5e748b021ce142_JaffaCakes118
Size

15KB
MD5

1798406cc108872a0a5e748b021ce142
SHA1

e60dbc8a516108245b16d10140ee1af43b1f151c
SHA256

7bd261086d79fbe288c940c71f9bebb66634b7b491616905c32c670269e439d1
SHA512

607a2dcc6dc5e3fd8013d5b0762d67ebaefcd68fac678315dde978d3ff5a52be3d60c0b08bc5d44cd04698227f0a1c51ad200e0cbb210ab178c18a8716315ff8
SSDEEP

384:NUK49s6BQ5D+RAzbdv0f3yD+iEQruEKIq7Ckkkh87:CK49zB1AzbdvO3yDzEQrPak

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1798406cc108872a0a5e748b021ce142_JaffaCakes118

Files

1798406cc108872a0a5e748b021ce142_JaffaCakes118
.exe windows:4 windows x86 arch:x86

36decc04ba70c1c8d72a9c6c6d2dc6c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

ioctlsocket
sendto
accept
GetAddressByNameW

gdi32

CombineRgn
CreateRectRgn
EnumFontFamiliesExW
CreateDIBitmap
EnumMetaFile
GetDeviceGammaRamp
GetKerningPairsW
GetObjectW
GetDCOrgEx

shell32

ShellExecuteExW
DragQueryFileW
FreeIconList
SheSetCurDrive
DuplicateIcon
StrStrA
FindExeDlgProc

Sections

.text
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE