33dbf7b4c80cfd68cdf21c3fdaf1e43b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33dbf7b4c80cfd68cdf21c3fdaf1e43b_JaffaCakes118
Size

2.6MB
MD5

33dbf7b4c80cfd68cdf21c3fdaf1e43b
SHA1

25849acfb5c2a3912a76fa0a816a34a38df37d0f
SHA256

1d98f6c687e031630697d0b56e4d17a08e3002f64d5e67d78cd56c82db39e65b
SHA512

68ed0eaefd8fccbda027fe392092dff3f0cf2be152e854a45c632705ca4fb5b0c9401c1ae86159a367de07a576cbe920bf7fd5f81a21fceb77fc64ab29600b59
SSDEEP

49152:+/nF/M3nv9xFWy3ROugfo+fVitVmjB5gdMnus8ER0+hHZoxG+ZhaQ:+/9CnDFZ3cvfo+titVoKslR0wZMZV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33dbf7b4c80cfd68cdf21c3fdaf1e43b_JaffaCakes118

Files

33dbf7b4c80cfd68cdf21c3fdaf1e43b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dad504744feebf0a6ac3fc913c19dbed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
WriteFile
CloseHandle
CreateFileA
CreateThread
ExitProcess
ExitThread
GetFileSize
GetModuleFileNameA
GetProcAddress
LoadLibraryA
ReadFile
SetFilePointer
Sleep
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 482B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ