3ba8369676a33d53af8ba2cbda604157_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ba8369676a33d53af8ba2cbda604157_JaffaCakes118
Size

392KB
MD5

3ba8369676a33d53af8ba2cbda604157
SHA1

0df54b3d4e26c95d4bade6c9ebbc675e5ff14ab8
SHA256

5538ceb54ca6c5c82d70a4cbb72a52f6be7030632236adaf17646e52cccfc356
SHA512

180dee08eeb13d63a50769a878ccdee6218a0b8671fa77a479155ddd0fe4c6ac34092fb2140ddec287dcaaa29409632ef41a32c2bbf5138f44fefdb69f2227af
SSDEEP

6144:xHaJuk2mGp9VUwTZtX02giP9YoRRQGb8gJCPankzjzVjyTVyS9m1D4lUUV6:xa0jmwTZSihRQwJCi4zVWThBl76

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ba8369676a33d53af8ba2cbda604157_JaffaCakes118

Files

3ba8369676a33d53af8ba2cbda604157_JaffaCakes118
.exe windows:4 windows x86 arch:x86

066fd592a77075a566ab31140665f7c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
FindClose
LoadLibraryExW
SetLastError
CreateMutexA
Sleep
LocalUnlock
ReleaseMutex
HeapCreate
UnmapViewOfFile
FreeEnvironmentStringsA
GetModuleHandleA
FindResourceA
TlsGetValue
SetConsoleCursorInfo
GetACP
GetLastError
ExitThread
GlobalFree
HeapDestroy

user32

IsWindow
DrawMenuBar
GetDlgItem
DrawEdge
CallWindowProcA
FillRect
DefWindowProcW
CheckRadioButton
GetIconInfo
GetDC
CopyRect
GetFocus
DispatchMessageA

uxtheme

DrawThemeText
DrawThemeIcon
GetThemeRect
DrawThemeEdge
GetThemeSysInt

clbcatq

SetupOpen

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ