74d917047ef954be1b00a5ceb8e0b1e7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74d917047ef954be1b00a5ceb8e0b1e7_JaffaCakes118
Size

7KB
MD5

74d917047ef954be1b00a5ceb8e0b1e7
SHA1

c44c1b148cfd4e952f80a6274c652cb1dec5f543
SHA256

ca3e7d69644ae6637aa5474c09133a250d268b62ca1ad4d574aa6be52ac4403d
SHA512

f57e013f8255c17770f5b3edfc9381a5d80a35e7ab6396ce7e4ec16b63a0ed2e7851579bd517a3668914f10639c2e1f4be4a0f9d63a03840d9564b40d317d0a8
SSDEEP

48:qV1XEhDEtowuvyZ+oLLUbxtNa9Cam67JRbvvRgIz:Zwuc+oLgNva/7Jhpg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74d917047ef954be1b00a5ceb8e0b1e7_JaffaCakes118

Files

74d917047ef954be1b00a5ceb8e0b1e7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

96dc3a0a2a3e24adb1dfbfe25c3c9141

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

msvcrt

fwrite
??2@YAPAXI@Z
fopen
sprintf
??3@YAXPAX@Z
fclose
free
_initterm
malloc
_adjust_fdiv

kernel32

CreateThread
GetSystemDirectoryA
lstrcatA
CreateProcessA
GetFileAttributesA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ