87714b15eb7db64a86037054d76195b0_JaffaCakes118 | Triage

Sharing

General

Target

87714b15eb7db64a86037054d76195b0_JaffaCakes118
Size

1.0MB
MD5

87714b15eb7db64a86037054d76195b0
SHA1

94e68f702a948186728b4ad99fdbebbd5191f5d5
SHA256

4976016eee1baa3c09807c9b2e4594ee82cb5a0347684b03fa76bf07a40b8cf0
SHA512

cdfb687a07b2ed6c96193fc58cad210ac3abf09bab3d859e7b716afff28fd330d2ea33704487261f94a3fe6e0da36083d959520897188c247ddfbdf6373c134d
SSDEEP

24576:nq27sABdEq3Zo4o3DOdQ2KgOEIh27fUoAGXnq3Htj/VsHOo/:rV3ZWUIh0UoAG63H5+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87714b15eb7db64a86037054d76195b0_JaffaCakes118

Files

87714b15eb7db64a86037054d76195b0_JaffaCakes118
.exe windows:9 windows x86 arch:x86

b267d2b0c9ee7ac4386510b317e8524f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetExitCodeThread
HeapAlloc
OpenThread
GetFileTime
CreateFileA
OpenFileMappingA
HeapCreate
VirtualFree
HeapDestroy
GetCurrentThreadId
DisconnectNamedPipe
CreateThread
SetHandleInformation
HeapSize
ExitThread
GetThreadPriorityBoost
ConnectNamedPipe
WriteFile
UnmapViewOfFile
SetThreadExecutionState
VirtualAlloc
SystemTimeToFileTime
HeapUnlock
SuspendThread
CloseHandle
ReadFile
HeapFree
GetHandleInformation
ExitProcess
CreateFileMappingA
MapViewOfFile
GetSystemTime
SetFilePointer
ResumeThread
SetThreadPriority
CreateMutexA
GetCurrentThread

Sections

.text
Size: 913KB - Virtual size: 913KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrcs
Size: 15KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ