023d127b30431b85359bb4b75842492b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

023d127b30431b85359bb4b75842492b_JaffaCakes118
Size

993KB
MD5

023d127b30431b85359bb4b75842492b
SHA1

932a222c89ab2a8f6c5d84add42c3a203469e1cd
SHA256

e33ba9ccb0b8c79dee7869287d616316ec474147443cddc43f17249a51dd3be6
SHA512

6eb5885fa347ceb0a2f476de194fa5f3ac92ab78d5343fe6d60600b38e12ef87ff05d499e183c74b28ddf67c391172193365fa21c9f0d1dc5bf6ec84d624eafe
SSDEEP

24576:1wiz3XMu/Geknhrr49phVT2y/jzTn11oYPkMFQ5P98XD/:/3v/jUhrr2Vtvn11ffQ5O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
023d127b30431b85359bb4b75842492b_JaffaCakes118

Files

023d127b30431b85359bb4b75842492b_JaffaCakes118
.exe windows:3 windows x86 arch:x86

aeb8c57602fd54ae2ec36b731cc09ad1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFirmwareEnvironmentVariableA
ReleaseMutex
HeapDestroy
WriteFile
EnumLanguageGroupLocalesA
ReadFile
GetFileTime
HeapCreate
HeapAlloc
HeapFree
GetCurrentDirectoryA
GetSystemDefaultLangID
GetLastError
CreateFileA
EnumSystemLanguageGroupsA
CloseHandle
FileTimeToLocalFileTime
GetModuleHandleA
GetVersion
lstrcpyA
CopyFileExA
SetFilePointer
OpenWaitableTimerA

Sections

.text
Size: 722KB - Virtual size: 724KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 254KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ