a65e3a427d286dffaf5e7737b4331ce4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a65e3a427d286dffaf5e7737b4331ce4_JaffaCakes118
Size

339KB
MD5

a65e3a427d286dffaf5e7737b4331ce4
SHA1

707eb8a96aa2a630af7f369ec0133e0c968269ac
SHA256

c0ef4a63aa1b01986b39ed1169a6d334f2fd083d3d9c592444952b30b9cc604a
SHA512

fae2e56eaa3ddbbfe28f801250002b6118d2a5ac0d1e10bf2f4bcdbc6f90edb47b1cfdb658e8849b7d7de3988de32e42e3d6e27ac01ee45d9f1cde8de811426d
SSDEEP

6144:n4T3JLqDPP/eKT3WmrWdSLdIMfE18I1fj/15vF/Y:4T35qzmU3WmrmSLdbZI1fLJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a65e3a427d286dffaf5e7737b4331ce4_JaffaCakes118

Files

a65e3a427d286dffaf5e7737b4331ce4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ab5f70b66c3a6ea42805633381288963

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

wsock32

WSACleanup

winmm

mixerSetControlDetails

version

VerQueryValueA

comctl32

ImageList_Create

psapi

GetModuleBaseNameA

user32

SetMenu

gdi32

FillRgn

comdlg32

GetOpenFileNameA

advapi32

RegDeleteKeyA

shell32

DragQueryPoint

ole32

OleInitialize

oleaut32

SafeArrayGetDim

Sections

.text
Size: 316KB - Virtual size: 896KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE