2ac9cd6dd9323b52114bcd490ae66650_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ac9cd6dd9323b52114bcd490ae66650_JaffaCakes118
Size

171KB
MD5

2ac9cd6dd9323b52114bcd490ae66650
SHA1

754c5dee4860538d38cec2fb1af5641c87a833b6
SHA256

2dfdd93e3933ad6e67794e2ed9f69fd82484ad9b50a7d516618cf276d0f464bc
SHA512

8b8d130bc8b2777f2b8ef3864f84565ced07c2b76bd31ed20479682144c124f90453a8ab2ecebbff08596778556f0e144157059b2a0d554cf813f2e79c9cd98c
SSDEEP

3072:UuizbzczGWFO3xe10tNsQr16aNYkuXWKyL6NrbVIY/E9p2xzMo:UuoECJheeGQr166mXW54xBE9p2ZMo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ac9cd6dd9323b52114bcd490ae66650_JaffaCakes118

Files

2ac9cd6dd9323b52114bcd490ae66650_JaffaCakes118
.exe windows:4 windows x86 arch:x86

664a56af4e26afaa3e91afa8bfa5cad2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

comdlg32

GetOpenFileNameA

fmod

_FMUSIC_SetMasterVolume@8

Sections

CODE
Size: 160KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE