87d252949223031773cff87411abca5c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87d252949223031773cff87411abca5c_JaffaCakes118
Size

16KB
MD5

87d252949223031773cff87411abca5c
SHA1

84e5757fe2cd87cb297304d81803935f2cf2cf3a
SHA256

10d52dca1a8e597cef54103da4421265109161b05cc4cd303aadb1b59a9c19d2
SHA512

e766a57479c1e10a8f900db759dccb39daa8ca62b3cfbc4e0e36fc62b2769c6607b560f5e4c2f223837c3839b231a6a5ee4ca7a8aca619660cf86c043c2d15d5
SSDEEP

384:VguWOAKGs8EH6RWiKaej3KoPq6nwkenGZE:Vtmoa0iK786nbrZE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87d252949223031773cff87411abca5c_JaffaCakes118

Files

87d252949223031773cff87411abca5c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b4e3f70b6ea4a4966706bc977170db22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FindNextUrlCacheEntryA
GetUrlCacheHeaderData
FindNextUrlCacheEntryA
CreateUrlCacheContainerW

shell32

SHBindToParent
SHFormatDrive
DragQueryFileW
SHGetDataFromIDListA
SHGetPathFromIDListW
StrStrA
ExtractIconA

msvcrt

__iscsymf
__argc
__toascii
__RTCastToVoid
__unDName
__badioinfo
__crtLCMapStringA
__pioinfo
__unDNameEx

Sections

.text
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE