b4f2666654a7bea630ec40574fbfc9d2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4f2666654a7bea630ec40574fbfc9d2_JaffaCakes118
Size

19KB
MD5

b4f2666654a7bea630ec40574fbfc9d2
SHA1

8064c8c86ab35d93e7a818fd6b338eaa92e46e6b
SHA256

3a7b2003b163b63db9c4e02a31dc7c448b6d7978ad7b99c0b983ae671592c702
SHA512

5eac4f949bf3871db7e7141ac39efc8819887c276e2f5562153572d0401cd36e1bf7dc6adf27868d626c55fd5431be0a0176db2b63afce05d24c93648d52f1e4
SSDEEP

384:zEXFaizu7yVBhfoOE2Gy3wSvueHdzjmKQT+Ox46d:4XFaizzV7k2Gy5ue9z7OBl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4f2666654a7bea630ec40574fbfc9d2_JaffaCakes118

Files

b4f2666654a7bea630ec40574fbfc9d2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fd941deb78fef2c61a3383a44382aa52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHBindToParent
SHFormatDrive
DragQueryFileW
SHGetDataFromIDListA
SHGetPathFromIDListW
StrStrA
ExtractIconA

msvcrt

__iscsymf
__argc
__toascii
__RTCastToVoid
__unDName
__badioinfo
__crtLCMapStringA
__pioinfo
__unDNameEx

wininet

FindNextUrlCacheEntryA
GetUrlCacheHeaderData
FindNextUrlCacheEntryA
CreateUrlCacheContainerW

Sections

.text
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE