26ef88f427d4f8dc2c1a657b2fc42c4e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26ef88f427d4f8dc2c1a657b2fc42c4e_JaffaCakes118
Size

21KB
MD5

26ef88f427d4f8dc2c1a657b2fc42c4e
SHA1

cf96008c5dcae77295774af86293bbbfee6df462
SHA256

a632041e045d983ce4c53ba9e5ceb0d50df570bf26893221155db859c422673a
SHA512

e0217ea7b2fc5a76322e40ff85e9125c9b93a9d6c36bed9dcb036dcabd2f9ef519e2c14821a521db618d47f3d071fde28c1fc86fa79260f92ea31a262f1b9516
SSDEEP

384:uwymA2KtUH4zkC392i5OpZWvwkOEltmwU7unX9CZWxzt1DxWfymWSj:RyN2fYzk8flnEuNLRr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26ef88f427d4f8dc2c1a657b2fc42c4e_JaffaCakes118

Files

26ef88f427d4f8dc2c1a657b2fc42c4e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

db6df19be817478e58e2fd5d97e0cefe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetProcAddress
LoadLibraryA
CloseHandle
WriteFile
CreateFileA
GetLastError
CreateMutexA
OpenMutexA
WinExec
GetModuleFileNameA
lstrcpyA
GetSystemDirectoryA
lstrlenA
lstrcatA

user32

CharLowerA
wsprintfA

Sections

.rdata
Size: 512B - Virtual size: 482B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE