ccd7eee3212f975ea5f2559290095acb_JaffaCakes118 | Triage

Sharing

General

Target

ccd7eee3212f975ea5f2559290095acb_JaffaCakes118
Size

220KB
MD5

ccd7eee3212f975ea5f2559290095acb
SHA1

55bd7608da8eb9515890c4c1ee119c5c15f135a1
SHA256

cee7c4925f79faa186c6024655ce85df643be3cd453b83b1b641adb4dba63333
SHA512

decad3a83ccc2f944b2dd7223b8cc319c858718f9b860edba0a836a6b4043d53a9ade197336c88373da2925b8ea8a18ed1c2a29b725f683c6f7e656b4dbdd394
SSDEEP

6144:jgiERHc6NTul3/1fUv/oukK0u1JW4bwAQAgTPke:jgiERdNTg/1fUH5kKkowToe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccd7eee3212f975ea5f2559290095acb_JaffaCakes118

Files

ccd7eee3212f975ea5f2559290095acb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

044f65c38fa442d5071976c5a672544e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

CharLowerA

advapi32

RegSetValueExA

shell32

ShellExecuteA

ws2_32

getsockname

wininet

InternetCloseHandle

mpr

WNetAddConnection2A

oleaut32

GetErrorInfo

Sections

.text
Size: 176KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tqn
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE