045c743b4aac8cf3ee779f67c60d4cc7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

045c743b4aac8cf3ee779f67c60d4cc7_JaffaCakes118
Size

2KB
MD5

045c743b4aac8cf3ee779f67c60d4cc7
SHA1

7a30690f4c99e24e2c6b255fd79a84eb095cc715
SHA256

e824c65d6d29c5a0155677fd62adaa1cf5cf3d334d3d9ef8203108162dcaaba1
SHA512

a4316f49f0c93b1fb75895d153634853d754e7696d84e14a3c835dcd506c9e81bdef85ce032a2cde84ca2dc07f8bcf4fab937ffd7a4989df0e1fda0dc9572881

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
045c743b4aac8cf3ee779f67c60d4cc7_JaffaCakes118

Files

045c743b4aac8cf3ee779f67c60d4cc7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d4e2e7483bc7f9e1e046014759b465d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetTickCount
Sleep
GetTempFileNameA

urlmon

URLDownloadToFileA

ws2_32

socket
WSAStartup
sendto

Sections

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 950B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE