ad1b21b9e18886d883243b628ae935c3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad1b21b9e18886d883243b628ae935c3_JaffaCakes118
Size

109KB
MD5

ad1b21b9e18886d883243b628ae935c3
SHA1

f51974a6bc5c499c3e7a57163a9109167b51335b
SHA256

e2c5682ea49fc61f1d5cb607626ab29513858769837b8af3ae79ff9f28b8ab31
SHA512

0cde31e1e42595f7fddd3ef52a93b133b06952552516dcc41160e40197633d22f85ce7ede9c9541be05d446545f4c23cae8eeded36f8d16310e68171d399a172
SSDEEP

3072:Z0hX4He9bJu2bNqSX3tqSf2WQtLvjtpQVIS:WxAibAINqSX9B2WQfpQVIS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ssstars3d.exe

Files

ad1b21b9e18886d883243b628ae935c3_JaffaCakes118
.7z
ssstars3d.exe
.exe windows:4 windows x86 arch:x86

4d4365e4bd27d90ddef38ff5b9e8ea3e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetCurrentProcess
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetTickCount
SetErrorMode

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 218B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ