0d3864ad40a03d360c6d8cd3d576683e_JaffaCakes118 | Triage

Sharing

General

Target

0d3864ad40a03d360c6d8cd3d576683e_JaffaCakes118
Size

243KB
MD5

0d3864ad40a03d360c6d8cd3d576683e
SHA1

75c107e3d60e4092fd6b615a306276da2896ee91
SHA256

777e5668ddbca7ac83cd060c7d439b77ac2c478d56ea4e54a495f035466b5e8b
SHA512

f27592b9128ec74f3d7d39d196f08c996dc23a1b4d41407b89442b7fcda2faf4fe66b39d99f51067ce22a9556977ea0bf8471bb4036f924b75d10b9b7fb42b0c
SSDEEP

6144:K0sL59fW/FhMzWxK35o4PGMlYZWe9wz2ZHOSNUknAlsHMT2XlW:K0srfiFlxK35o4PGMEWjzwHnUH+lW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d3864ad40a03d360c6d8cd3d576683e_JaffaCakes118

Files

0d3864ad40a03d360c6d8cd3d576683e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cf10fdbdbcd4534eb67e983779ae8872

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreateEx

shlwapi

wnsprintfA

kernel32

GetLongPathNameA
GetExitCodeThread
LeaveCriticalSection
FindFirstChangeNotificationA
EnterCriticalSection
ResumeThread
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
SetThreadPriority
CreateFileW
GetPrivateProfileStringW
GetFileAttributesW
GetModuleFileNameW
SuspendThread
WaitForMultipleObjects
CreateEventW
FindNextFileW
OutputDebugStringW
DeleteFileW
CreateDirectoryW
TerminateProcess
MultiByteToWideChar
FileTimeToSystemTime
FreeLibrary
GetProcAddress
LoadLibraryA
WideCharToMultiByte
DeleteFileA

oleaut32

CreateErrorInfo
GetRecordInfoFromTypeInfo
VarI2FromDec
VariantInit
SysFreeString

Sections

.text
Size: 115KB - Virtual size: 202KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 274B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ