5d3db2589c9bd3cd9aca8e7a24f4fd84_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d3db2589c9bd3cd9aca8e7a24f4fd84_JaffaCakes118
Size

1010KB
MD5

5d3db2589c9bd3cd9aca8e7a24f4fd84
SHA1

efc156e4e3c54e15422b34424f0a3e4a7035f915
SHA256

0250f6a215c7b87148075b86a701ee74a8501f25c59ce38480e6d44bfe3ed745
SHA512

ebb6681db1c21770c78f0ee22e47566fa13abf926f195639f2bcaee74a4bc90a114e46e4bee88bc81070695acd25da11038340821b8f4cc6caa97ec48fcee6fd
SSDEEP

12288:rGXCxDZHqhHSUp5E5bjb/psZc47s3EMTf5WuBg5N09Ea8dHzeOlENaBtVzxrHymn:rZdJXX/Ac2sUGn+Y9Ea85eGENkrH2g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d3db2589c9bd3cd9aca8e7a24f4fd84_JaffaCakes118

Files

5d3db2589c9bd3cd9aca8e7a24f4fd84_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fcd5f10a653c44427b690d5e9e7c1be4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
FlushFileBuffers
CreateFileMappingW
UnmapViewOfFile
GetTimeZoneInformation
CreateEventW
MoveFileExW
lstrlenA
lstrcatW
GetDriveTypeW
HeapAlloc
GlobalLock
OpenProcess
CloseHandle
SetEndOfFile
MultiByteToWideChar
GetSystemTime
SetThreadPriority
GetCommandLineA
lstrcpynW
CreateMutexW
GetUserDefaultUILanguage
SetFileAttributesW
GetTempPathW
ReleaseMutex
ExpandEnvironmentStringsW
GetModuleFileNameA
WriteFile
GetSystemTimeAsFileTime
DisconnectNamedPipe

Sections

.ipoz
Size: 35KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pevkf
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rshaz
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ