ad2207f6e34da85440bad604fbb1bc82_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad2207f6e34da85440bad604fbb1bc82_JaffaCakes118
Size

365KB
MD5

ad2207f6e34da85440bad604fbb1bc82
SHA1

045be3f1b03fdea39ea2c16e12dd8be1026986fe
SHA256

0fc6b2677b2bfc8c9b4b0e861733ed46948d6795ff8727b34d7bd6aa3a84908d
SHA512

ac62533f5b30ec14ad0a4d75e8e4782dd09586431cfba1825140563b7ad00029f10119cc2f44c7047bfad8c85de8ad43b3130efcdf9f59a9234218d0c58f7154
SSDEEP

6144:4Q0nAh8z/W0xLh74H3Iwhp7uzvCKnPpyHbYnemgo3ArW0gRknQ8vVV6k:cAh8z/W0wH4whp7aaeMHb5mL3ArW0gR+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad2207f6e34da85440bad604fbb1bc82_JaffaCakes118

Files

ad2207f6e34da85440bad604fbb1bc82_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f2c03ff500f64d3be27f46444fae1e8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlen
CloseHandle
TerminateThread
GetModuleHandleA
TlsGetValue
FindResourceA
CreateFileA
PulseEvent
SetLastError
GlobalUnlock
Sleep
GetConsoleMode
CreateMutexA
SetEnvironmentVariableA
GetCurrentThreadId
GetStdHandle
ReleaseMutex
HeapCreate
LocalFree
LoadLibraryExW

user32

FillRect
CheckRadioButton
DrawEdge
IsWindow
GetIconInfo
GetDlgItem
GetDC
DrawMenuBar
DefWindowProcW
CallWindowProcA
SetFocus
CopyRect
DispatchMessageA

uxtheme

GetThemeBool
CloseThemeData
DrawThemeIcon
GetCurrentThemeName
GetThemeColor

dpnet

DirectPlay8Create

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 356KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ