fad9af9bcc2ce40e77fcdfcb13e436a6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fad9af9bcc2ce40e77fcdfcb13e436a6_JaffaCakes118
Size

43KB
MD5

fad9af9bcc2ce40e77fcdfcb13e436a6
SHA1

de14667f2f55c935b08340a82e3924d20374e374
SHA256

c881d3649c3b016a41a5432e187685f118a7bf4cd728dcd3ba51df1a054a2b8b
SHA512

c22220dff71bfa06ba4b0d6d023a0d541d3a4323540537b981ffc9ab20835f5467f252e7573be11124b8d0474fbd4590b99ea97083944acd9887ec3d040453ee
SSDEEP

768:cWCmMgnyFCK8A6YR9Ko11zyL+dnvWl1HZJ52lnHFV7HeaxSkB:hCmMwOCK8B097ysvGHn52llhDf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fad9af9bcc2ce40e77fcdfcb13e436a6_JaffaCakes118

Files

fad9af9bcc2ce40e77fcdfcb13e436a6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1614cbad655d20b3a2fbef5798a36dc7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesW
CloseHandle
SetFileTime
CreateProcessW
GetModuleHandleA
GetUserDefaultUILanguage
HeapFree
SetEndOfFile
GetSystemTime
CreateFileMappingW
SetEvent
GetTimeZoneInformation
SetThreadPriority
GetModuleFileNameA
ExpandEnvironmentStringsW
CreateMutexW
lstrcatW
CreateThread
ReleaseMutex
lstrcpynW
GetSystemTimeAsFileTime
lstrcmpiA
GetCurrentThread
MultiByteToWideChar
CopyFileW
CreateEventW
GlobalLock
WriteFile
EnterCriticalSection
SetLastError

user32

MsgWaitForMultipleObjects

Sections

.veh
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ktgx
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fad
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ