73db9e0bcae92a832a8186aaee42ccc7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73db9e0bcae92a832a8186aaee42ccc7_JaffaCakes118
Size

60KB
MD5

73db9e0bcae92a832a8186aaee42ccc7
SHA1

7749fee96cb20ffceff71b21ff84e5081073bd9a
SHA256

f2cc37248b82ba2d8683f7e4edaf64f50912c7e1ae726fd97b9f13a9e1761486
SHA512

4dbc617bf5e4fd22f86da6417e07eca32255cff1570c6c5e8bbfd71de9b1d655c41cce284771adab73d544bb73230771d5243e34997404434a848406f5f4e8a1
SSDEEP

192:RcbSZS8vdC3a8zGobaZ037TC7MLzBv5ehTqNRbSZS8vdC3a+MkqWg5GdBx:RZZoFzHw03PLzBv5OTqN8ZoDIGdBx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73db9e0bcae92a832a8186aaee42ccc7_JaffaCakes118

Files

73db9e0bcae92a832a8186aaee42ccc7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ef30e1d329c066858d893d5dff93272c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

Imports

kernel32

lstrcpyA
CreateDirectoryA
GetProcessHeap
HeapAlloc
DeleteFileA
GetSystemDirectoryA
WritePrivateProfileStringA
WaitForMultipleObjects
HeapFree
ExitProcess
GetModuleHandleA
GetCommandLineA
GetShortPathNameA
GetEnvironmentVariableA
GetModuleFileNameA
SetProcessPriorityBoost
SetThreadPriority
GetCurrentThread
SetPriorityClass
GetCurrentProcess
lstrcatA
GetProcAddress
SetEndOfFile

user32

wsprintfA
PeekMessageA
ShowWindow
ShowOwnedPopups

shell32

SHGetFolderPathA
ShellExecuteExA

shlwapi

PathAppendA

advapi32

RegCreateKeyA
RegCloseKey
RegSetValueExA
RegOpenKeyA

Sections

VL�Y��
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE