8b17c28573ad00723e5c06350001f27e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b17c28573ad00723e5c06350001f27e_JaffaCakes118
Size

1.0MB
MD5

8b17c28573ad00723e5c06350001f27e
SHA1

418fd066a732508753bb372f36d5bafd77fe68d4
SHA256

4bd676266ce4a5385daaf1fc28b42eb7bbb67d1723f7db6ff10295426a921dd5
SHA512

27d84ca86f4fa0d2ec290a1987810a7d063721abae744132c9cde72ceb197f57e4e30ba9065f1558ae314eea811108c11be39b80b3cd889d7579cde3effe81a2
SSDEEP

24576:Ok5jTwMoRuYjPq5Pkxe00oQy+nUeOfcg3o:OkhwMoRuqPzXQykUnz3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b17c28573ad00723e5c06350001f27e_JaffaCakes118

Files

8b17c28573ad00723e5c06350001f27e_JaffaCakes118
.exe windows:2 windows x86 arch:x86

9fcf7cb30f02c2f76f431f45de692598

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
WriteFile
HeapCreate
ExitProcess
CloseHandle
HeapDestroy
SetHandleInformation
GetTempFileNameA
FlushViewOfFile
MapViewOfFile
VirtualFree
GetHandleInformation
ResumeThread
GetThreadContext
GetThreadPriority
HeapSummary
ReadFile
HeapFree
LocalAlloc
OpenThread
LocalFree
SetThreadAffinityMask
GetSystemTime
DeleteFileA
CreateFileMappingA
GetCurrentThreadId
TerminateThread
HeapAlloc
ExitThread
CreateMutexA
VirtualAlloc
SetThreadLocale
UnmapViewOfFile
CreateFileA
CreateThread
GetCurrentThread

Sections

.text
Size: 913KB - Virtual size: 913KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrcs
Size: 15KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ