054be847380412511e365d2eb83ca19b_JaffaCakes118 | Triage

Sharing

General

Target

054be847380412511e365d2eb83ca19b_JaffaCakes118
Size

795KB
MD5

054be847380412511e365d2eb83ca19b
SHA1

69015c94b61ea9b966cabe1a633c6af9db4aaeb9
SHA256

5877fb4e3fd2ba13d3131b061513357cff24e7dead95ed59a8a8baea97fd9bc5
SHA512

3b3c8974ba196cfb25485a891f7d7a6877fad6d0017fb50aee5ab0fff14079e231f508c29c257cd9bcee31dc2eb2e1d6dd08f22e675da31662f49cf7dc15ee26
SSDEEP

12288:MdMrvN5UkDCRXd8QxZn2WAjG0icrU8Pua6lKaz1St01dCqVHT+R5:MWvwGEXdVxVRmrrUjayK01St0TCmw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
054be847380412511e365d2eb83ca19b_JaffaCakes118

Files

054be847380412511e365d2eb83ca19b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

632636323b802d4a7dd7d568cea8ac3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessW
GetCommandLineA
GetDriveTypeW
GlobalLock
lstrcmpiA
ReleaseMutex
FindClose
SetThreadPriority
lstrcatW
FlushFileBuffers
GetTempPathW
GetSystemTime
DisconnectNamedPipe
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
GetCurrentThread
CreateMutexW
CreateEventW
CloseHandle
GetTimeZoneInformation
CopyFileW
SetEndOfFile
MoveFileExW
UnmapViewOfFile
FindFirstFileW
lstrcpynW
MultiByteToWideChar
GetModuleFileNameA
ExpandEnvironmentStringsW

Sections

.xyjgd
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bsb
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hufcl
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ