a203ae4bb1c55b636fa1aafaae861cd7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a203ae4bb1c55b636fa1aafaae861cd7_JaffaCakes118
Size

1.0MB
MD5

a203ae4bb1c55b636fa1aafaae861cd7
SHA1

5036a4de90165854a25c53b3371b350db45f27d7
SHA256

2650e7c85ee6f56e83087b84c14f0df272a14384b6821497448d5b875465958a
SHA512

ae2df7c3114dabbe5aba9a2dee6b7ac9b07b3b0e8b5475de091073d0f5f9e5742188046c6982597bdf4049e784806b661485836d153a27edb461ee5581251634
SSDEEP

24576:qsgVCgcj9EEVET5tDm27WyPQpzgToTkbKNpmwk0tH4D9QG:qshGEE997ZedkyhTMt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a203ae4bb1c55b636fa1aafaae861cd7_JaffaCakes118

Files

a203ae4bb1c55b636fa1aafaae861cd7_JaffaCakes118
.exe windows:7 windows x86 arch:x86

c9f6e9c215e7584a6a2bdde165309c54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LocalAlloc
UnmapViewOfFile
HeapFree
GetCurrentProcess
CreateFileMappingA
HeapUnlock
SetThreadAffinityMask
HeapAlloc
CreateFileA
GetThreadPriorityBoost
CreateMutexA
CloseHandle
CreateEventA
HeapCreate
TerminateThread
WaitForSingleObject
ExitProcess
GetHandleInformation
HeapCompact
SetFilePointer
SetThreadIdealProcessor
GetCurrentProcessId
SetThreadPriority
SwitchToThread
GetCurrentThreadId
OpenThread
VirtualAlloc
GetSystemTimes
LocalFree
MapViewOfFile
SetHandleInformation
VirtualFree
ReadFile
SetThreadLocale
GetCurrentThread
HeapDestroy

Sections

.text
Size: 913KB - Virtual size: 913KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrcs
Size: 15KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ