84f23a10ea16707949b2f1540f692690_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84f23a10ea16707949b2f1540f692690_JaffaCakes118
Size

56KB
MD5

84f23a10ea16707949b2f1540f692690
SHA1

da06cac668911f52341f769f1b4c318b5d868355
SHA256

e66af90ece9f88735249beed44f8d7058c194d4f2b2cf99d289bd45712d49318
SHA512

c498bd75b07755215d6586ee418dbfc228630c6570fe33daf4b79af3be1a8561673da2322b5ce3b5858c5709642c1459e5f6e150e7b2de95af4b789e440fb01f
SSDEEP

768:+Yuc5y57q8uSf4bPtdN6r9RYuc5y57q8uSjOIbPtdN6rt:+YMGAf4bFWYMGAjOIbFA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84f23a10ea16707949b2f1540f692690_JaffaCakes118

Files

84f23a10ea16707949b2f1540f692690_JaffaCakes118
.exe windows:4 windows x86 arch:x86

477be841711d2a2ae8e46f841f976930

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
FindClose
TerminateThread
TlsGetValue
Sleep
IsBadStringPtrW
CloseHandle
GetModuleHandleA
PulseEvent
FindResourceA
GetACP
ReleaseMutex
LocalFree
LoadLibraryW
HeapCreate
SetLastError
lstrlen
CreateMutexA
GlobalUnlock
GetEnvironmentVariableA

user32

FillRect
DefWindowProcW
CheckRadioButton
GetDC
SetFocus
CopyRect
DrawEdge
GetIconInfo
GetDlgItem
DrawMenuBar
DispatchMessageA
CallWindowProcA
IsWindow

msasn1

ASN1BERDecNull
ASN1BERDecCheck
ASN1BERDecBool
ASN1BEREncBool
ASN1BEREncEoid

dpnet

DirectPlay8Create

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

enbygsi
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE