2da9542609e0be014cfa91fc3439bed1_JaffaCakes118 | Triage

Sharing

General

Target

2da9542609e0be014cfa91fc3439bed1_JaffaCakes118
Size

43KB
MD5

2da9542609e0be014cfa91fc3439bed1
SHA1

d67e3f45d3a20bd6b7d50cf1c7a681f0b3225ebb
SHA256

05a71700a16c84816a530f52d50c7407826176da7a0dd581bf9386b317504f28
SHA512

53fff01b57c862c58ccd2da4278b188e9e4c06c824de734370203aa1f45a2203bb6cc9a73fac56d1b994eb6ee655ed97992739d4342e9e3b0c83ac2560bfa8df
SSDEEP

768:cofyUh3JuWz6IeZl33UW1mwwrfdCEdMC9gtiUSYkNFKkBueY:cJyZjwlUafSe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2da9542609e0be014cfa91fc3439bed1_JaffaCakes118

Files

2da9542609e0be014cfa91fc3439bed1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

480b7ba963e7f85383f0e7611f1d88aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
OpenProcess
CopyFileW
MultiByteToWideChar
ExpandEnvironmentStringsW
GetModuleHandleA
GetCurrentThread
lstrcmpiA
CreateEventW
UnmapViewOfFile
CloseHandle
SetEvent
SetEndOfFile
FlushFileBuffers
MoveFileExW
GetTempPathW
lstrcatW
GetSystemTimeAsFileTime
GetModuleFileNameA
WriteFile
SetFileAttributesW
GetDriveTypeW
GetSystemTime
lstrlenA
ReleaseMutex
GetTimeZoneInformation
HeapAlloc
GetCommandLineA
CreateProcessW
EnterCriticalSection

user32

SetThreadDesktop

Sections

.retqj
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mtinev
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rkxyj
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ