1746acd5b96240dbf2e8b6526406698d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1746acd5b96240dbf2e8b6526406698d_JaffaCakes118
Size

43KB
MD5

1746acd5b96240dbf2e8b6526406698d
SHA1

ecf33fe085c0000a165bd981d5b372a1d590645f
SHA256

1cc633ce133e5b71477537b63981ec0fe8b870d6104fd3ded8f9ef823971e390
SHA512

44960b96c1d2dba720035d0ee2cf7c5ff21bf9d69a57f3e4d9f78f6aaacad5040512d0197e859f3c465785ad77f008aaf8d6da70fb7ed62189a15bf13653a95e
SSDEEP

768:Wwcj4celzW8OWV2jTGnlZAkFpID8pS4Vtj4Ks86VcH/ZNzU3:2j4celWMVYGhgmSejHs8PHhQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1746acd5b96240dbf2e8b6526406698d_JaffaCakes118

Files

1746acd5b96240dbf2e8b6526406698d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d91247649d068846846d1ae8cd65a633

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExpandEnvironmentStringsW
lstrlenA
lstrcpynW
ReleaseMutex
GetSystemTime
MultiByteToWideChar
FlushFileBuffers
CreateEventW
GetDriveTypeW
SetFileTime
CreateThread
SetEndOfFile
HeapAlloc
WriteFile
lstrcatW
GetSystemTimeAsFileTime
EnterCriticalSection
CloseHandle
FindClose
SetLastError
HeapFree
GetModuleHandleA
CreateProcessW
SetEvent
GetTimeZoneInformation
SetThreadPriority
GetUserDefaultUILanguage
FindFirstFileW
OpenProcess
CreateMutexW

user32

GetKeyState
SendMessageW
DispatchMessageW
SetProcessWindowStation
GetWindowTextW

Sections

.inez
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mzmj
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dqvst
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ