be7cfdd17825fd956e258f23d351c803_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be7cfdd17825fd956e258f23d351c803_JaffaCakes118
Size

52KB
MD5

be7cfdd17825fd956e258f23d351c803
SHA1

93aff38a2ea089bfe63515e888eab2ad32dfcf2c
SHA256

00fdc0c20f3c4fa2e2bf519fccd81ca188c0d32b09261760c1c737f131052536
SHA512

098e1aaa3ff3776763d0a4ad3f105c8cda801bf6a7d3aa8ee8e9a4cccf218a8b85e1d1b87aee5dc78667977d197bdcc40b63c0b0103d53e7eedf9250754d4a84
SSDEEP

768:2iP9/LMQclOGMuaoZZFug95GWea+V5dozWwaD+bZnOr3pqeIwebn:2CiXjaY8g95ZeZDuClD+bZOr3pq1/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be7cfdd17825fd956e258f23d351c803_JaffaCakes118

Files

be7cfdd17825fd956e258f23d351c803_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4c71388e384fa8d26ecec1f0da9a7e67

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLDownloadToCacheFileA
ReleaseBindInfo
CompareSecurityIds
DllRegisterServerEx

ntdll

LdrShutdownThread
ZwSetInformationProcess
KiUserCallbackDispatcher
LdrLockLoaderLock

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE