8b9d121b11ad1b848729608847a2cd9f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b9d121b11ad1b848729608847a2cd9f_JaffaCakes118
Size

570KB
MD5

8b9d121b11ad1b848729608847a2cd9f
SHA1

49b414ad62e859f1778daedc268c2e0e8afde34b
SHA256

c1a2f30fd14e9df8feb65b84ee618660ecae345cab37a281999fc57369ee4868
SHA512

6acb3cc9257c1558ddb6036d202055b4916302c3c0978251097a20afa61109c3e967ce47a3d5a5a69639db2aea0f0cb2c946904ef34a7565fa72bd53f560206c
SSDEEP

12288:CPqHTdAlmkcMtKRZza0cHseF7E3i14E1Y54u2DUpe4er97zkk65:CATCXcfRZzfcHTOqhY543DWzer97zG5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b9d121b11ad1b848729608847a2cd9f_JaffaCakes118

Files

8b9d121b11ad1b848729608847a2cd9f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e0c3b6e36b48d900a8b17fac94756a96

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
MultiByteToWideChar
CreateThread
lstrcatW
SetEndOfFile
CreateMutexW
GlobalLock
CloseHandle
EnterCriticalSection
SetThreadPriority
CreateFileMappingW
GetModuleHandleA
FlushFileBuffers
lstrcpynW
SetFileTime
HeapAlloc
lstrcmpiA
GetDriveTypeW
SetFileAttributesW
FindFirstFileW
FindClose
ReleaseMutex
MoveFileExW
GetCommandLineA
WriteFile
CopyFileW
GetUserDefaultUILanguage
GetTempPathW
ExpandEnvironmentStringsW
GetCurrentThread
DisconnectNamedPipe

user32

DrawIcon
GetKeyState
SendMessageW
GetForegroundWindow
PeekMessageW

Sections

.cpsxep
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zybun
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrml
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ