bfc0f513dbfe2ebdfcd6d751f283259e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfc0f513dbfe2ebdfcd6d751f283259e_JaffaCakes118
Size

566KB
MD5

bfc0f513dbfe2ebdfcd6d751f283259e
SHA1

9d6e487c21ee6bb429d2b798b9c6061c6aa611fe
SHA256

35ac2c15aa032426b35e9343658b70a8f6586f82cc20272dc4350faeb6d24e03
SHA512

28e29cd6ec043b645ac2a2eb17a8a72a56e2846292cf997cd5ea1f8ed8a18972b10875a4ad2bacef20e1ef80e66244a22d1e1065a52581bd75dc38384aa8c65b
SSDEEP

12288:zPq7+aawHlsHJVuM5w25bFBprvLf0Fg6A32PTXCx75KCgg3Tc:zi7KJkMlbFzrTd6fmce

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfc0f513dbfe2ebdfcd6d751f283259e_JaffaCakes118

Files

bfc0f513dbfe2ebdfcd6d751f283259e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6940fa33508c473f8bafdd5565c33502

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

ws2_32

socket

ddraw

DirectDrawCreateEx

dsound

ord1

user32

DialogBoxParamA

gdi32

SetTextAlign

ole32

CoInitialize

jpeg

jpeg_read_scanlines

mydivx

QuitOGGSoundSystem

imagehlp

CheckSumMappedFile

winmm

timeEndPeriod

advapi32

OpenSCManagerA

Sections

.text
Size: 557KB - Virtual size: 8.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE