f4e7627563d9bb245fce01fddb58c22f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f4e7627563d9bb245fce01fddb58c22f_JaffaCakes118
Size

365KB
MD5

f4e7627563d9bb245fce01fddb58c22f
SHA1

484aa45e5e48f29ae57674ef01b785b554ddfecb
SHA256

f58b204aed7d409799ed278dfea0deac853f5bcb75ea052bf1c050f7818f66d4
SHA512

76b1b3bf47a1550fd587aae0548e4335a52855b30e01fcc45129b6786e4d42c031cb6611f7f98bf7045ae5186a49a3439a79e3c3223d8daba884cb1cbf2e8b6b
SSDEEP

6144:uOl7BvA+j+4CnpCxAE0KPn7dB9Wc7V6qLJIg8ukjODlGzfcdc+pvsCojHViEosmH:uOf5j3CcxR0e7Uc7MOJIP1WGzUdNiCo6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4e7627563d9bb245fce01fddb58c22f_JaffaCakes118

Files

f4e7627563d9bb245fce01fddb58c22f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0200bd0da84d7a690ab3815ce235ac15

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
CreateFileA
GlobalFree
IsBadStringPtrA
TlsGetValue
GetACP
FindClose
ReleaseMutex
ExitThread
CloseHandle
HeapCreate
GlobalUnlock
GetTickCount
PulseEvent
DeleteAtom
SetLastError
CreateMutexA
GetModuleHandleA
GetEnvironmentVariableA
FindResourceA

user32

CallWindowProcA
DefWindowProcW
IsWindow
DrawMenuBar
CheckRadioButton
GetIconInfo
GetDC
CopyRect
DrawEdge
SetFocus
GetDlgItem
DispatchMessageA
FillRect

msasn1

ASN1BERDecBool
ASN1BERDecNull
ASN1BERDecCheck
ASN1BEREncEoid
ASN1BEREncBool

dpnet

DirectPlay8Create

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 356KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ