ac7c2b9ef35666666d50364b655062b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac7c2b9ef35666666d50364b655062b9_JaffaCakes118
Size

43KB
MD5

ac7c2b9ef35666666d50364b655062b9
SHA1

126214fbefcb8674a6f387067742761f79cebc87
SHA256

d097e1ae426b6bf75ca63bb7955bc48271f6073fbb26252c745bb4c174180702
SHA512

c9119640d8dd8dee4fa3479947f631f10d83aedd1f8c74c49f44be8da66720266de14cb1b6bcc258879ab024f303947da702bf1fc551c01224da42f0d53d6c48
SSDEEP

768:wxnS0VEMPQr6xt+ifs2Scq/ynA3Fv1ChGAOtX7IjbrfnWOU7cto:SrQQ+ifsh/1FEzOtXEnrfWO3t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac7c2b9ef35666666d50364b655062b9_JaffaCakes118

Files

ac7c2b9ef35666666d50364b655062b9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d579f9e6c31a70f710b0e3ebab255cb7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProcess
UnmapViewOfFile
CreateFileMappingW
FindClose
GetModuleHandleA
CreateProcessW
HeapFree
GetDriveTypeW
MultiByteToWideChar
SetEvent
lstrlenA
GetCommandLineA
lstrcatW
HeapAlloc
GetSystemTimeAsFileTime
GetTempPathW
SetThreadPriority
lstrcpynW
GlobalLock
SetLastError
FindFirstFileW
GetTimeZoneInformation
ReleaseMutex
CreateEventW
CopyFileW
EnterCriticalSection
FlushFileBuffers
GetUserDefaultUILanguage
SetFileAttributesW
CreateThread

Sections

.bot
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rql
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lkp
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ