f071b7c7747c0659d4183000e4b31841_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f071b7c7747c0659d4183000e4b31841_JaffaCakes118
Size

1.1MB
MD5

f071b7c7747c0659d4183000e4b31841
SHA1

797f0591c313cccc2b125a97c9de39a1f96162cd
SHA256

5cda9cee3b9e2a30b7a8923aecb2c2acddf921b21a403a360695ee9e401538eb
SHA512

940f491f70b4f69aa0726f8572a88cbdf3696d0614f606795285ecad8aa053447160ebe3f489d29e72ace9fbf5e0f13eb7012078e5e4b8812250fd7863ccf277
SSDEEP

24576:HgPLQLzDzTx+IBkZTJ/5HUnZdfjtQePGszgSuRCItBa1y9QAgEL3Kw:kLukGUx4QVFR9EY9QAgQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f071b7c7747c0659d4183000e4b31841_JaffaCakes118

Files

f071b7c7747c0659d4183000e4b31841_JaffaCakes118
.exe windows:0 windows x86 arch:x86

cf3decc284a86dcff19080d7b93890b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThreadId
GetHandleInformation
GetLocalTime
WaitForSingleObject
CloseHandle
VirtualFree
MapViewOfFile
OpenThread
CreateEventA
VirtualAlloc
CreateFileMappingA
UnmapViewOfFile
ExitProcess

Sections

.text
Size: 1018KB - Virtual size: 1018KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ