07e64e7933626c779faa1cc1a0171737_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07e64e7933626c779faa1cc1a0171737_JaffaCakes118
Size

14KB
MD5

07e64e7933626c779faa1cc1a0171737
SHA1

1a3e5addd5076a51acca598bce1b3ef74b0de1e3
SHA256

ae427abe509dfe763526d1bbd02799545b916e6e028ff94f1fa54fa930cbab0f
SHA512

1c09994347ac942d54d4c4978c05497a817cd0be20f0749c1d8b5b46053be5645203629edfefd0b3525559d82dcb9f30ba4429a6cc1cc8253ee4a48af113f355
SSDEEP

384:9CDqMcE+8vngzo7vkeSEkg7UTw6AlT+WymHD:Y+Mcm78Q97UTyiWy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07e64e7933626c779faa1cc1a0171737_JaffaCakes118

Files

07e64e7933626c779faa1cc1a0171737_JaffaCakes118
.exe windows:6 windows x86 arch:x86

8b3e54e2a8c149fe1e30507cf9318a81

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
CreateFileMappingA
VirtualAlloc
MapViewOfFile
UnmapViewOfFile
SetFilePointer
HeapFree
ReadFile
HeapQueryInformation
FileTimeToLocalFileTime
WriteFile
WriteFileGather
HeapDestroy
CloseHandle
VirtualFree
GetCurrentProcessId
HeapCreate
lstrlenA
WaitNamedPipeA
HeapValidate
InitializeCriticalSection
SetLastError
CreateFileA
VirtualQuery
GetFileTime
LeaveCriticalSection
HeapAlloc
HeapSize
lstrcpynA
ExitProcess

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ