3f512a31e5f3927d3b14c745fa3f734b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f512a31e5f3927d3b14c745fa3f734b_JaffaCakes118
Size

29KB
MD5

3f512a31e5f3927d3b14c745fa3f734b
SHA1

502e307266f0797f9b6cf76b7d7a0d5b3a013344
SHA256

183e4bba41982e1a551e9190d6b495fd4a47d0b3816737b941e02967879b8e9a
SHA512

07e4a30b96296886c8f230fb6c336020d6034d6ce2e71c877a4a8e47bf3e9c290c787dad5ecb0f78b056a2cedfb61fcd49a91c9a3ab553bd361340d76e57f880
SSDEEP

384:mIr8VpViLDg4lHHlPgGgstKGbZ/djLbJ7IbZUPCssp5RG3k:mIrkyg4lnlhzZlnl7IVUNsp5RG3k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f512a31e5f3927d3b14c745fa3f734b_JaffaCakes118

Files

3f512a31e5f3927d3b14c745fa3f734b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

362b0220220c1607f6059bc533a47f18

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetModuleHandleA
RtlUnwind

user32

GetClientRect
BeginPaint
EndPaint
LoadCursorA
LoadIconA
TranslateAcceleratorA
LoadAcceleratorsA
RegisterClassA
LoadStringA
GetMessageA
TranslateMessage
DispatchMessageA
GetDC
ReleaseDC
SendMessageA
PostMessageA
PostQuitMessage
ShowWindow
CreateWindowExA
DefWindowProcA

gdi32

SetPixel

comctl32

CreateStatusWindowA

crtdll

__GetMainArgs
cos
exit
exp
memset
raise
rand
signal
sin
srand
strchr
tan
time

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 268B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 140B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE