00650a968ae2d88482b7feee79e5e15b_JaffaCakes118 | Triage

Sharing

General

Target

00650a968ae2d88482b7feee79e5e15b_JaffaCakes118
Size

43KB
MD5

00650a968ae2d88482b7feee79e5e15b
SHA1

d01bac617fcf0f6a6fd1e6dac171b148c9490ab8
SHA256

577f69298f2784c3a9c9fbafdacf3048512aaa4b544ab272c76605f103490a9e
SHA512

5e56e857998d417591d32ac9af693962ca5dec65bd993572a774eb5ec5c28a09997a167e39a8ffdb51f3e1315233e19b5f45c973157cbe8f351f4aac52c58016
SSDEEP

768:TK2W8DeMV0MTik8qBEyyEvNOCwtC3dPXMfAYxL/5NVyJWBP4rF7kvluPWQg:uODeMiMrljzvetC3dP8fVxlNCWxYF7mO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00650a968ae2d88482b7feee79e5e15b_JaffaCakes118

Files

00650a968ae2d88482b7feee79e5e15b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

786c97af7ae388903971976f33435e4d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
ReleaseMutex
DisconnectNamedPipe
HeapAlloc
lstrlenA
SetFileTime
CreateProcessW
SetEvent
OpenProcess
MoveFileExW
SetEndOfFile
UnmapViewOfFile
CreateEventW
lstrcmpiA
GetUserDefaultUILanguage
FindFirstFileW
CreateThread
SetFileAttributesW
CreateMutexW
CloseHandle
FlushFileBuffers
lstrcpynW
GetCommandLineA
FindClose
GlobalLock
HeapFree
lstrcatW
GetCurrentThread
SetThreadPriority
EnterCriticalSection
GetTempPathW
SetLastError

user32

GetWindowTextW
SendMessageW
GetWindowLongW

Sections

.nal
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mvwv
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mzilcb
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ