23f9ee09bb5e36c8813eb09615be80bf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23f9ee09bb5e36c8813eb09615be80bf_JaffaCakes118
Size

66KB
MD5

23f9ee09bb5e36c8813eb09615be80bf
SHA1

8b838a319404cf7138b245ca3ad4e267f43de35b
SHA256

0130abd605911eab86a8ffadddedb86a80dcc50e257283db112e4e4aa8b30f23
SHA512

40e6f74e9b5d5fa3be90bdd5b1e192debf91c5d5629c973472ee7436b456d3d060cb23c87958211ff36d96ba192788ab7882f47077150b92ce38a7cb285d4342
SSDEEP

1536:xVZJWMakvW4z5LkdI6aLeEDT0zPi6qnCNsKJf99zLuSfdGo5:HyMNvht8raCEDTOPi6s/KxDzqSE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23f9ee09bb5e36c8813eb09615be80bf_JaffaCakes118

Files

23f9ee09bb5e36c8813eb09615be80bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56ab617e3eee5a022ac411513e913f9f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumWindows
DdeNameService
FrameRect
DrawIconEx

wininet

FtpFindFirstFileA
FtpPutFileW
GopherCreateLocatorW
FtpCreateDirectoryW
CreateUrlCacheContainerA
GopherOpenFileA

urlmon

CreateURLMoniker
URLOpenBlockingStreamA
CoInternetParseUrl
URLOpenBlockingStreamA
UrlMkBuildVersion
CoInternetGetSecurityUrl

Sections

.text
Size: 39KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE