be2adf85008a4df31bdd687fdf475041_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be2adf85008a4df31bdd687fdf475041_JaffaCakes118
Size

43KB
MD5

be2adf85008a4df31bdd687fdf475041
SHA1

28a441c7ec8bc02348cd618e8fa329f5ae2cdabd
SHA256

a41fcdbf9761410b340f2357c91965c4c65141d8f03e5c66f7b5aa63026e3098
SHA512

80be6f93e8dad8ac05b2967d2974a475eb9dcd85c891b16bccc50fe2599009daf0ac680567ff8e2a50f8c6e68c2aea58bd367007538413eacea959eb3f4db885
SSDEEP

768:MhObPsC2H3cQ0SwtUc2fdL8m53PtvimetKmR9JYprGKMR:M8zsXH3DCth2fyC/tvimeYCvs2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be2adf85008a4df31bdd687fdf475041_JaffaCakes118

Files

be2adf85008a4df31bdd687fdf475041_JaffaCakes118
.exe windows:5 windows x86 arch:x86

46491123fbe428c07b0d831c590e48fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
GlobalLock
HeapAlloc
SetFileAttributesW
SetThreadPriority
CreateFileMappingW
CreateMutexW
SetFileTime
SetLastError
GetTimeZoneInformation
ExpandEnvironmentStringsW
GetTempPathW
GetSystemTime
SetEvent
GetModuleHandleA
CreateThread
CloseHandle
ReleaseMutex
EnterCriticalSection
WriteFile
GetCommandLineA
CreateProcessW
FindFirstFileW
lstrcmpiA
MultiByteToWideChar
MoveFileExW
FindClose
OpenProcess
GetSystemTimeAsFileTime
HeapFree

user32

MsgWaitForMultipleObjects
PeekMessageA
GetDlgItemTextW
SendMessageW
DrawIcon
GetWindowLongW

Sections

.gpkvsx
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vutyl
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.psbun
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ