182d4f7bcbed102213ce6f4c1d7a25b4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

182d4f7bcbed102213ce6f4c1d7a25b4_JaffaCakes118
Size

43KB
MD5

182d4f7bcbed102213ce6f4c1d7a25b4
SHA1

8636ec6aff2436beec8e016169db0eca22fb1aa0
SHA256

1b87bc707047b22b4e0dc9cc99737251d739651acd4533fd263b6875c9dc76e5
SHA512

0951d590b3414fb082c14b465326ae75fa7a5837d49287ee2d40e35255476008f11cc4578ea4fbc77c2018750187d851d146afecc5e456ee7548ad27fd779064
SSDEEP

768:4/r144lYjYMErLlWj2NRX9n4z2EiuZI6XMuwqL2PQmqfKIObyJDOhffDdIdDRTHK:4r1PlYmLrNRuz2VKcuwqL2792cDdIZi5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
182d4f7bcbed102213ce6f4c1d7a25b4_JaffaCakes118

Files

182d4f7bcbed102213ce6f4c1d7a25b4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

dcce7d2c7136687655808cf9e0534133

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetCommandLineA
WriteFile
GlobalLock
GetSystemTimeAsFileTime
SetFileAttributesW
SetThreadPriority
MultiByteToWideChar
SetFileTime
GetUserDefaultUILanguage
lstrcmpiA
OpenProcess
GetCurrentThread
CreateProcessW
lstrlenA
CreateMutexW
GetTempPathW
lstrcpynW
CreateEventW
GetTimeZoneInformation
CloseHandle
ExpandEnvironmentStringsW
CreateFileMappingW
FindFirstFileW
FlushFileBuffers
GetModuleHandleA
FindClose
EnterCriticalSection
SetEvent
CreateThread
ReleaseMutex
GetDriveTypeW

user32

CloseDesktop
MsgWaitForMultipleObjects

Sections

.ejuj
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oban
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dszcj
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ