b87c2a6ee8b344b4deb1aee341aaceeb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b87c2a6ee8b344b4deb1aee341aaceeb_JaffaCakes118
Size

401KB
MD5

b87c2a6ee8b344b4deb1aee341aaceeb
SHA1

383f6a0f2fb99438527d71bf17af3ce67d30129d
SHA256

6c26749bd2907c07eff262b7a0feb585b62bd45a43a7dacc291f0fe45ccd94b0
SHA512

092029b9a70b4541d9653fc69a79c46306a90d46b6f1ce2195ac5c03f717ac3db9fb011616663b3b17c0b8bb61874fe8f981d4dfacce26feb41d6d5f40d9119e
SSDEEP

12288:hY3i1S/025CfmrPFbw3pzoqmzlYydMFRvPdoyF:ZKlhr9sefYCMFln

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b87c2a6ee8b344b4deb1aee341aaceeb_JaffaCakes118

Files

b87c2a6ee8b344b4deb1aee341aaceeb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7eb446f62a582fadfc8765f09100136c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
SetEndOfFile
CopyFileW
GlobalLock
CloseHandle
GetModuleHandleA
GetDriveTypeW
lstrlenA
CreateThread
GetTempPathW
lstrcmpiA
CreateEventW
SetThreadPriority
SetFileTime
MultiByteToWideChar
CreateMutexW
HeapAlloc
FindClose
GetCurrentThread
GetCommandLineA
ReleaseMutex
CreateFileMappingW
MoveFileExW
DisconnectNamedPipe
GetSystemTime
lstrcatW
FlushFileBuffers
GetUserDefaultUILanguage
SetEvent
FindFirstFileW

Sections

.zkv
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rajon
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hkhsf
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ