6145878873311305131c845542b359db_JaffaCakes118 | Triage

Sharing

General

Target

6145878873311305131c845542b359db_JaffaCakes118
Size

583KB
MD5

6145878873311305131c845542b359db
SHA1

5863ae8543d92e92aa15bec2410b7e31277b2e98
SHA256

835ad1532f9d5d42d8e393460da7eba63c8ffbb331cdf1e1aae58cb674352c28
SHA512

e6428e46f74d010a4853256207ff9243811547bdc1bcb52211da2cb5b1013a3c159fff1e9e9eaeb56fbaee58516684d0842555bfc5dfba19e8ca1042d846df71
SSDEEP

12288:+bAsNvagsq9n2Y9BQZRgT4K5tjwzUSkI+LJ1SSZyDX4ZVG0EVlnMhqHrB:aagj9nX9u24K5RwQSkIQLuDPVln06rB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6145878873311305131c845542b359db_JaffaCakes118

Files

6145878873311305131c845542b359db_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e3512432f3da4c890e1864f0ac1638b2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEndOfFile
WriteFile
GetModuleHandleA
CreateProcessW
OpenProcess
lstrcpynW
EnterCriticalSection
ExpandEnvironmentStringsW
FindFirstFileW
lstrcmpiA
CreateFileMappingW
GetSystemTime
ReleaseMutex
FlushFileBuffers
CreateThread
CreateEventW
HeapAlloc
GlobalLock
GetSystemTimeAsFileTime
GetDriveTypeW
SetFileTime
SetThreadPriority
HeapFree
GetTempPathW
GetUserDefaultUILanguage
lstrlenA
SetFileAttributesW
CreateMutexW
DisconnectNamedPipe
FindClose
MultiByteToWideChar

user32

CloseDesktop
GetClipboardData
OpenWindowStationA
PeekMessageA

Sections

.ivshmz
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.shwduh
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.puvsp
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ