3ff3f5d9d38477d589a700a0ef0f2ad5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ff3f5d9d38477d589a700a0ef0f2ad5_JaffaCakes118
Size

787KB
MD5

3ff3f5d9d38477d589a700a0ef0f2ad5
SHA1

bef1333b33ffc6fc05ac2fd8fb9880138bff1221
SHA256

61d911c8a82f87ebe95c70f7b80eb386f5682309eb24a160ea80ba39f5c966cd
SHA512

629aebc25506cb7b1000cf2829fa31fc147f4009e260272f53c2960bf453698f27d469444e63cf2128ffe905c8f7afc657ff671d1da638785b1158e8ef05c7e9
SSDEEP

24576:GFQ7pTg/6Kpe/N02uIhljpRVLSHgi9k5bRuF:t7mC3/N087VDi96bRI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ff3f5d9d38477d589a700a0ef0f2ad5_JaffaCakes118

Files

3ff3f5d9d38477d589a700a0ef0f2ad5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5cd517d38a95ba1c82b264aa736dc056

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
LoadLibraryExA
PulseEvent
CloseHandle
SetLastError
Sleep
FindResourceA
LocalFree
GlobalUnlock
GetACP
lstrlen
GetModuleHandleA
CreateFileA
TerminateThread
TlsGetValue
GetEnvironmentVariableA
HeapCreate
GetConsoleMode
CreateMutexA
ReleaseMutex

user32

SetFocus
DrawMenuBar
GetDC
FillRect
IsWindow
GetIconInfo
CopyRect
CheckRadioButton
DefWindowProcW
GetDlgItem
DispatchMessageA
CallWindowProcA
DrawEdge

uxtheme

CloseThemeData
GetCurrentThemeName
DrawThemeIcon
GetThemeColor
GetThemeBool

dpnet

DirectPlay8Create

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 778KB - Virtual size: 778KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ