f6b7d080045dee294f0cafb1ef3d7680_JaffaCakes118 | Triage

Sharing

General

Target

f6b7d080045dee294f0cafb1ef3d7680_JaffaCakes118
Size

43KB
MD5

f6b7d080045dee294f0cafb1ef3d7680
SHA1

e903e6f3b54328b2dc1d4a0a890fe73a66a7e1c8
SHA256

1bfb61e2a8c7bde714b13a264fe8e0ad8c413e989f6fa11c0fb6da386d52885c
SHA512

947d40f595a12b344a95744af4825c0e8de5ee63a02261be0f80a212cb09054c3c1d013088404ffb55dc82eb5eb4af4f4ec020c8967cc864a5b1f83273cb68bb
SSDEEP

768:3+RKNPtZdY6VcXRKPZ02Xhci8PeTOhdQiEzKqyP+drG/w5paGw2Y36xJ7:3+wrdjcEXhci8WyhUenP+drmwZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6b7d080045dee294f0cafb1ef3d7680_JaffaCakes118

Files

f6b7d080045dee294f0cafb1ef3d7680_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d6ff3043c56c1b3033de8660f8f61e60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
lstrcatW
GetModuleHandleA
lstrcmpiA
MultiByteToWideChar
FindClose
CopyFileW
GetTempPathW
GetUserDefaultUILanguage
GetModuleFileNameA
lstrcpynW
OpenProcess
CloseHandle
GetCommandLineA
GetTimeZoneInformation
SetEndOfFile
WriteFile
EnterCriticalSection
MoveFileExW
ReleaseMutex
HeapAlloc
CreateThread
SetFileTime
CreateMutexW
ExpandEnvironmentStringsW
SetThreadPriority
GetSystemTime
GlobalLock
CreateFileMappingW
GetDriveTypeW
lstrlenA

user32

ToUnicode
GetMessageW

Sections

.rihgh
Size: 35KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sjgjij
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nojcb
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ