cefffa0cfe01e9e40b43efcaa02388be_JaffaCakes118 | Triage

Sharing

General

Target

cefffa0cfe01e9e40b43efcaa02388be_JaffaCakes118
Size

16KB
MD5

cefffa0cfe01e9e40b43efcaa02388be
SHA1

d9a4c272bcc5e92779733fd7324933c37fa30f6f
SHA256

8697f70db5161e60fbee6e5145caec3bda09eb9ec3fd5d572f2ce2d772cec25c
SHA512

d31f5b37349066b66714b2e69019e3ba10531da2d6a2e232e8ad7af4ecbc4ce38c7e4b28fc0f9dc1ce2eb22f5cd00dc184a6e35027d16b7e2795f5ef022c8857
SSDEEP

384:3KQ19X2ZxxHq/drgSbij0TDKY2og9EfRBs2wlkNHzO87:3fX2bxHq1MTj0TeY2L9sBXNHzF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cefffa0cfe01e9e40b43efcaa02388be_JaffaCakes118

Files

cefffa0cfe01e9e40b43efcaa02388be_JaffaCakes118
.exe windows:4 windows x86 arch:x86

36decc04ba70c1c8d72a9c6c6d2dc6c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

ioctlsocket
sendto
accept
GetAddressByNameW

gdi32

CombineRgn
CreateRectRgn
EnumFontFamiliesExW
CreateDIBitmap
EnumMetaFile
GetDeviceGammaRamp
GetKerningPairsW
GetObjectW
GetDCOrgEx

shell32

ShellExecuteExW
DragQueryFileW
FreeIconList
SheSetCurDrive
DuplicateIcon
StrStrA
FindExeDlgProc

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE