9414fb5ae62f74cb6b6e8ba647ff29f9_JaffaCakes118 | Triage

Sharing

General

Target

9414fb5ae62f74cb6b6e8ba647ff29f9_JaffaCakes118
Size

43KB
MD5

9414fb5ae62f74cb6b6e8ba647ff29f9
SHA1

ad354100a66a4831ebcddcd695e5c196f2bb768f
SHA256

09edb85ac15bccfca43890cd978fede083c9c2ddf702e8b7781a7ca9a74dab76
SHA512

d9399d109181fd34b0e7e48ea7ecfa62edc9f42464041e0b3a54173c8b24177d9452e1f8cd2da54e113cda3d3809e96e13d55dee12dc125e90a691c6ae5d83b9
SSDEEP

768:RFTjdhG2iJsV3SgjDqmZy5DJTt3GFbBgkLArwAIX4u5fHP6RMGxqzzvCz:j3vHimVirxRU2kLAUP1HkHkvCz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9414fb5ae62f74cb6b6e8ba647ff29f9_JaffaCakes118

Files

9414fb5ae62f74cb6b6e8ba647ff29f9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2861f923d25d911f31ad33b1b3a42fdb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
DisconnectNamedPipe
SetLastError
FindClose
GlobalLock
CreateProcessW
lstrcatW
HeapAlloc
GetTimeZoneInformation
WriteFile
SetFileTime
CopyFileW
SetFileAttributesW
FlushFileBuffers
MoveFileExW
GetModuleHandleA
MultiByteToWideChar
CreateThread
FindFirstFileW
lstrcpynW
UnmapViewOfFile
GetSystemTime
GetTempPathW
GetSystemTimeAsFileTime
HeapFree
ExpandEnvironmentStringsW
SetEvent
GetModuleFileNameA
GetCurrentThread
CreateFileMappingW

user32

GetWindowTextW

Sections

.ydol
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qrstsl
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pcpav
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ