bb7490edaf2a476ae7f950de97383e5c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb7490edaf2a476ae7f950de97383e5c_JaffaCakes118
Size

787KB
MD5

bb7490edaf2a476ae7f950de97383e5c
SHA1

5c4064e3a929dc2b9c1d2b9d4c6c1248953d2d3b
SHA256

c7ca8ac73545630634ddcc7619dd10fcf5a6fb22a8fb0b88252e8f8f5b4c4197
SHA512

d9b3a3a937fa151156aa667b1159221bd24a77beea173f6d10fbc14791c45e47e877d5b521f43180ce19b1635712c7049ee206ca2d5bba353048c4caedc9c85b
SSDEEP

24576:B9dOO0HlBuyF51d9F5rVxrSIlS0COud2qQo:EFTndrV5DI/d2K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb7490edaf2a476ae7f950de97383e5c_JaffaCakes118

Files

bb7490edaf2a476ae7f950de97383e5c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

81592a6335ad87dcb5645314c0f1c281

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
SetEnvironmentVariableA
Sleep
GetStdHandle
LocalFree
CreateMutexA
GlobalUnlock
HeapCreate
PulseEvent
FindResourceA
TlsGetValue
CreateFileA
GetModuleHandleA
GetCurrentThreadId
lstrlen
CloseHandle
ReleaseMutex
LoadLibraryExW
SetLastError
TerminateThread

user32

DrawEdge
FillRect
DrawMenuBar
IsWindow
GetIconInfo
GetDlgItem
GetDC
CallWindowProcA
CheckRadioButton
CopyRect
SetFocus
DispatchMessageA
DefWindowProcW

uxtheme

GetThemeColor
DrawThemeIcon
GetCurrentThemeName
CloseThemeData
GetThemeBool

dpnet

DirectPlay8Create

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 778KB - Virtual size: 778KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ