09b9c0f74e399877369a2738e02bb79c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09b9c0f74e399877369a2738e02bb79c_JaffaCakes118
Size

187KB
MD5

09b9c0f74e399877369a2738e02bb79c
SHA1

aadf4b01288ca84e6d30559942ffda467c3357f0
SHA256

9f0b0142c8d0113c0f9e0c03d60eb78b6635d4e86de6816c5fec49a7c70a6edd
SHA512

3c05986777f5a5fe5d8673038c0be9d0961ca997de7e26b05db2fc9f7ffb3112ba2075c972ab01df963f3aeb9d1f159c6d3553e1a75023d7b5b6f9aec4765b6d
SSDEEP

3072:NIDNFl75Ta2pWVkeYI5Uv/RkCwlwGxpt45Ns66WeKcaS3csO/zxuSc:NI1lZWVkE5UhZwlwQpt4zR6nanb4Sc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09b9c0f74e399877369a2738e02bb79c_JaffaCakes118

Files

09b9c0f74e399877369a2738e02bb79c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

52e0367d0f7ee6032fdbab12f35d935c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
CreateEventW
SetLastError
lstrcatW
HeapAlloc
GetTimeZoneInformation
GetCommandLineA
FindClose
SetEndOfFile
lstrcpynW
FindFirstFileW
EnterCriticalSection
SetEvent
MultiByteToWideChar
MoveFileExW
ExpandEnvironmentStringsW
CloseHandle
GetCurrentThread
SetThreadPriority
lstrlenA
GetTempPathW
SetFileTime
GetDriveTypeW
WriteFile
OpenProcess
GetSystemTimeAsFileTime
SetFileAttributesW
GetSystemTime
GetUserDefaultUILanguage
DisconnectNamedPipe

user32

CloseWindowStation

Sections

.srszit
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.holyt
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rermf
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ