da32a7082d11c0dad25b720d45ea0d1e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da32a7082d11c0dad25b720d45ea0d1e_JaffaCakes118
Size

510KB
MD5

da32a7082d11c0dad25b720d45ea0d1e
SHA1

9ae6b476fb6a2dbd6a19b065395696b3ea3a0590
SHA256

6af8ada233a9d242c4338340665670348d8dd00449bd64900cb79891a96a9325
SHA512

47f378ab3951ab40bf3ad5bd3217c0f2279857a570257fbab6810e64286b5638858e78d64486f80af4cb3ac2f3736d328f35e53d236c11b1da8c7f81660281b8
SSDEEP

6144:biegj4tazAIQYvGS5L1VgEhL7i8VT0f5rGcgQqXv58fV35wyibR8RZnbEsFy1Iah:btgUQFQYuMLjL7icTGGJXR8Uy++BxHah

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da32a7082d11c0dad25b720d45ea0d1e_JaffaCakes118

Files

da32a7082d11c0dad25b720d45ea0d1e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2861f923d25d911f31ad33b1b3a42fdb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
DisconnectNamedPipe
SetLastError
FindClose
GlobalLock
CreateProcessW
lstrcatW
HeapAlloc
GetTimeZoneInformation
WriteFile
SetFileTime
CopyFileW
SetFileAttributesW
FlushFileBuffers
MoveFileExW
GetModuleHandleA
MultiByteToWideChar
CreateThread
FindFirstFileW
lstrcpynW
UnmapViewOfFile
GetSystemTime
GetTempPathW
GetSystemTimeAsFileTime
HeapFree
ExpandEnvironmentStringsW
SetEvent
GetModuleFileNameA
GetCurrentThread
CreateFileMappingW

user32

GetWindowTextW

Sections

.ydol
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qrstsl
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pcpav
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ