da326e79c62705f8205c11ecef1ee4cc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da326e79c62705f8205c11ecef1ee4cc_JaffaCakes118
Size

43KB
MD5

da326e79c62705f8205c11ecef1ee4cc
SHA1

7d8ea2097457701fac35d0cfa4459fb314754ce7
SHA256

ddbe6ab7b130671b288489143fa3dd6704d3b4897794a44c7765cb47cc9861b4
SHA512

8ce85dab6f44f5e703cfd6f968941ec8b6c5abe55a33e08a19501ede1eb7c832ab209048522cc7d531ae3f63a734bc9b5c60119aafb40ab69ea74e8cad59e58c
SSDEEP

768:M8NEO8n+UPyO7hzzxKZXcojsh4EArmnXEPrd0oVc76c:MSp8n+OZx0XcTJArmnXEzxV0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da326e79c62705f8205c11ecef1ee4cc_JaffaCakes118

Files

da326e79c62705f8205c11ecef1ee4cc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

766ac06fbaa5981b9ac6846d993bbc98

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileW
FlushFileBuffers
DisconnectNamedPipe
CreateProcessW
GetTimeZoneInformation
CopyFileW
lstrlenA
SetLastError
OpenProcess
SetEvent
lstrcatW
GetModuleFileNameA
UnmapViewOfFile
EnterCriticalSection
GetUserDefaultUILanguage
GetTempPathW
CreateMutexW
GlobalLock
GetSystemTimeAsFileTime
WriteFile
SetFileTime
CreateThread
GetCurrentThread
SetEndOfFile
SetThreadPriority
ExpandEnvironmentStringsW
FindClose
HeapFree
CreateFileMappingW
CloseHandle
GetSystemTime

user32

CloseDesktop
GetWindowTextW
SetProcessWindowStation
LoadCursorW
EndDialog

Sections

.bkdgf
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uzkbiz
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ajwj
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ