3278ff25ba40cf8b808f551283b9332c_JaffaCakes118 | Triage

Sharing

General

Target

3278ff25ba40cf8b808f551283b9332c_JaffaCakes118
Size

34KB
MD5

3278ff25ba40cf8b808f551283b9332c
SHA1

1964eae4349f58afa2b9c1d8b62c060c7c830efd
SHA256

518ebad8980cb07a31f2e533868d3c915671aff8a18f0216a951ac9fb6a7e974
SHA512

230f614038be63c0e7da7ee7b28146092950777b2bd305adc402643ad93c7946d8a2b0c2d79588540b31b13b5d025a77599965733da28a2d7e9e771b1d55b75f
SSDEEP

768:igTSxgJ/G16AZqnetUTkJ2MV/cN7d7Fe:igTSxGGoAZFtUTkF0R+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3278ff25ba40cf8b808f551283b9332c_JaffaCakes118

Files

3278ff25ba40cf8b808f551283b9332c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2b6906acf5d8349b80d31ba15df97428

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetDIBColorTable
SetICMMode
SetRelAbs
ResetDCW
StretchBlt
UpdateColors
SaveDC
TextOutW

shell32

StrStrIA
SHAppBarMessage
SHFormatDrive

urlmon

GetClassFileOrMime
IsLoggingEnabledA
URLOpenStreamA
CoInstall
AsyncInstallDistributionUnit
IsValidURL

Sections

.text
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE