64372e65eef4cda5a6770e8eed3f79bd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64372e65eef4cda5a6770e8eed3f79bd_JaffaCakes118
Size

43KB
MD5

64372e65eef4cda5a6770e8eed3f79bd
SHA1

eb79837a33404cd043ca1e48645da7dd7b57a9de
SHA256

9b2084cb11e89418587675fb9fa1b6908fbb3ef5473827977c3e6b0fb0bef911
SHA512

258816a6ef28015e4b74692cd22f1e3171e0f2d853eea50b6ff8045e1f78e11261c61dbe29bd7f82999ad42372bebef8d2c8dc050464e3e4afd72d6770390a6d
SSDEEP

768:JWWXijvGBOEcMYYvICvO+hhbirEUhisOd+IVCWe83/5eBDSdzdwsIB9ld9fsdpjt:JWfCVCYgCvBIEUisK++CA2DSrwsInldC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64372e65eef4cda5a6770e8eed3f79bd_JaffaCakes118

Files

64372e65eef4cda5a6770e8eed3f79bd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

19fd342d783ccff4aa8d1bf0f5714542

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetCurrentThread
CreateThread
CreateMutexW
lstrlenA
CloseHandle
MultiByteToWideChar
SetLastError
CopyFileW
GlobalLock
WriteFile
GetDriveTypeW
SetFileTime
FindClose
CreateFileMappingW
FlushFileBuffers
GetModuleHandleA
FindFirstFileW
ExpandEnvironmentStringsW
SetThreadPriority
DisconnectNamedPipe
ReleaseMutex
GetUserDefaultUILanguage
CreateEventW
UnmapViewOfFile
SetEndOfFile
GetSystemTime
lstrcatW
lstrcmpiA
GetTimeZoneInformation
lstrcpynW

user32

FindWindowExW
OpenDesktopA

Sections

.vcb
Size: 35KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bil
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ubybmh
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ