cfd04256da8440550981184e2ede0ad0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfd04256da8440550981184e2ede0ad0_JaffaCakes118
Size

349KB
MD5

cfd04256da8440550981184e2ede0ad0
SHA1

8881866cf54b787f47757cfd4b4c920b5911ec42
SHA256

d1817901d1a171270593fd3c90cdb954e41abde03e629b090845cdcd3c67f8ba
SHA512

a691e46c23192a93ab427dc74fd4df020894a6fa0bdc8fa21c2c5f1260c70724113e46619cb1b7c6f96b8162a3425fe2f0586b9880c322cc99f63588108905e5
SSDEEP

6144:8n7rCOar6jw5Vq/nGyPMLtbkzhafTnjA1uwU5MA6x9bMFJGb:C05VYGyPaKzhafo1uwGL6x9Xb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cfd04256da8440550981184e2ede0ad0_JaffaCakes118

Files

cfd04256da8440550981184e2ede0ad0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d7c034a5da6607ec8ea99ee311ca52ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetTempPathW
SetLastError
CreateEventW
ExpandEnvironmentStringsW
lstrlenA
GetDriveTypeW
EnterCriticalSection
CreateProcessW
CreateMutexW
SetEvent
HeapFree
FindClose
CreateThread
SetFileTime
MoveFileExW
GetModuleFileNameA
SetThreadPriority
GetCommandLineA
ReleaseMutex
CopyFileW
CreateFileMappingW
GetUserDefaultUILanguage
SetEndOfFile
GetCurrentThread
GetTimeZoneInformation
UnmapViewOfFile
lstrcpynW
SetFileAttributesW
FlushFileBuffers

user32

OpenDesktopA

Sections

.wxgv
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gdwh
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gtyr
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ