75db33f5ce9a2195a3379181035f3faf_JaffaCakes118 | Triage

Sharing

General

Target

75db33f5ce9a2195a3379181035f3faf_JaffaCakes118
Size

128KB
MD5

75db33f5ce9a2195a3379181035f3faf
SHA1

ce74872bc33dc7b0c7127dcb267f3aa90f1c006a
SHA256

44f6126f9ce91f0176eca9caae92f83819e952ce0c3b1f8d8aabb7b39c625a68
SHA512

78b7ac445f31a71f9586d556a3c5991316b8fd7587c47471caf87170056c84043938173e413afc79d1cc92ba2e6efb7ee240ea06e1a1498be2cd5bf06e3d8adb
SSDEEP

1536:ToORswTJwdx6KedaqPmHgJqNdqCvzI+mzZ8Q:kO3JNmedCv0+mzG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75db33f5ce9a2195a3379181035f3faf_JaffaCakes118

Files

75db33f5ce9a2195a3379181035f3faf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

62b38e5d34e13df0c2600d119cccbae3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcat
GetFileSize
EnumResourceLanguagesA
SetThreadPriority
SetCommBreak
GetSystemDirectoryA
GetLongPathNameA
UnlockFile
VirtualAlloc
CreatePipe
GetComputerNameExA
InterlockedExchange
SetFilePointer
GetConsoleCommandHistoryLengthA
CreateFileA
GetVersionExA
FreeLibrary
DeviceIoControl
CloseHandle
GetModuleHandleA
GetStringTypeExW
EndUpdateResourceA
OpenSemaphoreA
TerminateJobObject
HeapDestroy
SetConsoleFont

wininet

InternetSetOptionW
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetReadFile
HttpQueryInfoA
InternetOpenW

Sections

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 116KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ