ce78f6846a96065152965e094ea22d7c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce78f6846a96065152965e094ea22d7c_JaffaCakes118
Size

43KB
MD5

ce78f6846a96065152965e094ea22d7c
SHA1

958e8e80c174c4ffe825b5091d98d825de779eec
SHA256

feb0e82302873495952078ca282e3d04641116bede0e3af1fbed6938d4acf394
SHA512

9d61b9f7624302e6ef0de835412c2c29df9937d5fe1cd2331448d6343ea619ca2732d790573253d61cce1ac6650c5017be88333c6f60e93a7e3f1091183837ab
SSDEEP

768:XaCYhKsIUYYMzzUHCk7sWWUu9pa44egdtywL0itRM2sQnCZXu:KZKxBdEHFCzy/P4izhs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce78f6846a96065152965e094ea22d7c_JaffaCakes118

Files

ce78f6846a96065152965e094ea22d7c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bda81de53aa64d410978c5aa3235ec74

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEndOfFile
HeapAlloc
SetFileTime
SetLastError
CreateFileMappingW
CloseHandle
GetCurrentThread
lstrcmpiA
HeapFree
FindFirstFileW
SetEvent
SetThreadPriority
lstrcatW
ExpandEnvironmentStringsW
lstrcpynW
ReleaseMutex
GetUserDefaultUILanguage
CreateMutexW
GetTimeZoneInformation
MoveFileExW
OpenProcess
GetTempPathW
WriteFile
MultiByteToWideChar
EnterCriticalSection
CreateProcessW
GetModuleHandleA
GetSystemTimeAsFileTime
CopyFileW
UnmapViewOfFile
lstrlenA

user32

GetIconInfo

Sections

.ribav
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wvuj
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qhud
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ