28bcdb0df315e11d33042a62b9730ae2_JaffaCakes118 | Triage

Sharing

General

Target

28bcdb0df315e11d33042a62b9730ae2_JaffaCakes118
Size

431KB
MD5

28bcdb0df315e11d33042a62b9730ae2
SHA1

ca81dafcf0e93098264e19c104ec30c02e885feb
SHA256

0edb34910415d4fa48df88ba3749ab674c64c48554a970596696c66e92ce6a73
SHA512

3aafb6a5fedb2c8668cb8b90561382e4a1ddb1435505ece60f121a54f7a61c8142527e75e1daf80170e968521a6a166a5122f0d76b57dfcb13b79f2df9c23fe7
SSDEEP

384:5v9NqZccPSsGr7PSLgSgVc3i7aidn/LqyHW7xYW3v9P5HzDa0a6b4rPA:5vKjb9gzg2au+yZkv9PxPazG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28bcdb0df315e11d33042a62b9730ae2_JaffaCakes118

Files

28bcdb0df315e11d33042a62b9730ae2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c19951ba71d5bb8953c8b91149a41f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

user32

TranslateMessage
SetTimer
GetMessageA
DispatchMessageA

kernel32

CloseHandle
WriteFile
OpenFile
GetSystemDirectoryA

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

Sections

.text
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 506B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 429KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE