3ec53fea7de83c36bf79f63a9a814e2e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ec53fea7de83c36bf79f63a9a814e2e_JaffaCakes118
Size

60KB
MD5

3ec53fea7de83c36bf79f63a9a814e2e
SHA1

f5ed9bd679549cd80019b7df905c3e0a5abb7324
SHA256

f69bbaa82f6f190ff056d31f6b100551a61e04d56c781c6a6274d075e17cd6f5
SHA512

61d034c24a769ee857190d39cd8e528278ef03fbb27916c0176cbebeb5aecaf2bd9d9d15d943e0cbdf7a12303721a6136afb70e8e4745fe99a140dd593492d02
SSDEEP

768:3H2EN6fjHYFTGMu9wOH9mq+P1tjlVMusqSC+LSG8ay75pNg8+w3Zf:YzV+PV+fLSFqM3Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ec53fea7de83c36bf79f63a9a814e2e_JaffaCakes118

Files

3ec53fea7de83c36bf79f63a9a814e2e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

836f23cd2f7290f9397ae443b69b98cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
MulDiv
FindResourceExW
TerminateThread
GlobalFree
ReadFile
SetWaitableTimer
WaitForSingleObject
FileTimeToSystemTime
SetLastError
CreateEventW
FindNextFileW
GetModuleFileNameW
GetFileSize
LoadResource
GlobalAlloc
WaitForMultipleObjects
FindFirstChangeNotificationW
GetVersion
GetProcAddress
LoadLibraryA
CancelWaitableTimer
InterlockedDecrement
GetFileAttributesExW
GetLocalTime
ReadProcessMemory

user32

RegisterWindowMessageW
CreatePopupMenu
EndDialog
SetCursor
RedrawWindow
IsWindow
DefWindowProcW
GetDlgItem
DestroyMenu
SystemParametersInfoW
LoadStringW
CreateWindowExW
SetCursorPos
SendMessageW
ReleaseDC
PostThreadMessageW
LoadBitmapW

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE