2108fefcfda6e4fbe8798be7ffa0c009_JaffaCakes118 | Triage

Sharing

General

Target

2108fefcfda6e4fbe8798be7ffa0c009_JaffaCakes118
Size

22KB
MD5

2108fefcfda6e4fbe8798be7ffa0c009
SHA1

b4288259f49a2cc71b2ee5c3e8893d4b6786182c
SHA256

3bbfb68d78c3508fe670bc21bf3410746f7b59cf24be4758606983f61280b016
SHA512

b14a4d8511c041f8b7fa0fc7baf372990d2ef9c0c9fac92897160382e0f3bec3981e05691698930c3a2d800694ffc45c7485a8a3cd382e880f958374dd222ee1
SSDEEP

384:eBDhaVkwNdbzwgLnSyOjobsldP35yoCIhZFH6sWossRoL906:eBDhij/bzwCOj4sldvXFHr9s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2108fefcfda6e4fbe8798be7ffa0c009_JaffaCakes118

Files

2108fefcfda6e4fbe8798be7ffa0c009_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46c6a4d2cbbc7b75f9d5a5371762b344

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

select

netapi32

DsGetDcOpenW

kernel32

ResetWriteWatch

user32

MapVirtualKeyExW

gdi32

ExtTextOutW

advapi32

RegCreateKeyW

shell32

ShellAboutW

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ