76da3dc306b0f8ced06af2d04c9170c0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76da3dc306b0f8ced06af2d04c9170c0_JaffaCakes118
Size

28KB
MD5

76da3dc306b0f8ced06af2d04c9170c0
SHA1

75a2f53559b1b5a6b1dc4f3d9dbca4508aa6b5a9
SHA256

0dbde8f3c086c1bd72ca2fc7864022c60499c99a5a3a34fe37a30293f1a38952
SHA512

f991168ea9d665b4fb674bb6a2666765642919b231a05b6bb93bc002de3e7690e044940b4dfd00a3ee730920c71c4f82e9646b293d4def391dda8a0a433e1b12
SSDEEP

768:SRkgy+9FcBu9zyfAk1L/wW1QdJN4tJAWeXrwpNE5:SRWKFcBupyYk5DiGwWebEI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76da3dc306b0f8ced06af2d04c9170c0_JaffaCakes118

Files

76da3dc306b0f8ced06af2d04c9170c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d13568877a42a7e7328a0aabe77cd1f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableA
ReleaseMutex
SetLastError
HeapCreate
GlobalUnlock
LoadLibraryA
GetModuleHandleA
PulseEvent
FindClose
GetACP
TlsGetValue
FindResourceA
IsBadStringPtrA
CloseHandle
CreateMutexA
CreateFileA
GlobalFree
GetTickCount
DeleteAtom
ExitThread

user32

DrawMenuBar
DispatchMessageA
SetFocus
GetIconInfo
IsWindow
CallWindowProcA
GetDlgItem
GetDC
DrawEdge
FillRect
CheckRadioButton
DefWindowProcW
CopyRect

msasn1

ASN1BERDecCheck
ASN1BEREncEoid
ASN1BERDecBool
ASN1BERDecNull
ASN1BEREncBool

dpnet

DirectPlay8Create

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ