83dd66839df977f5e2991ba9c2263c6d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83dd66839df977f5e2991ba9c2263c6d_JaffaCakes118
Size

183KB
MD5

83dd66839df977f5e2991ba9c2263c6d
SHA1

eed0316bb751dcc6a4c091de328845ee778acc91
SHA256

e114e6792f3cbef8396704e9aa5a95d5b391ffe515a4c587184b67d5408e8c9a
SHA512

fc91130e8df041b84abd114219932eb7b07e32fda73cb3026a78218ab7ea0447b3244b0250b31658eb43b4f24f995c30c67576676b9381781f7aa6838f7e5918
SSDEEP

3072:7DTQ25ziS7amNOGzyz2vThNC9gHk/gLxELbThKdqBG25ziS7amNOxzxbJqpMkUn:7A2znjwIyiH5FxELPoh2znjwp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83dd66839df977f5e2991ba9c2263c6d_JaffaCakes118

Files

83dd66839df977f5e2991ba9c2263c6d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6d3ab19a426df3d74b31e89e9d9df8ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsprop

FindSheet
ErrMsgParam
ErrMsg

user32

wsprintfA
MessageBoxW
PostMessageW
IsDialogMessageW
GetFocus
SendMessageA
GetDlgItemTextA
FindWindowA
CreateWindowExA
GetClassLongW
LoadCursorA
CharToOemW
InsertMenuA

mprapi

MprAdminConnectionEnum
MprInfoBlockFind
MprInfoBlockAdd
MprAdminBufferFree

kernel32

SetLastError
GetProcAddress
DeleteFileW
GetVersionExW
Sleep
WriteFile
GetFileAttributesA
SetFileTime
GetModuleHandleA
SearchPathA
LoadLibraryA
GetFileSize
GetStringTypeW
IsBadStringPtrA
LeaveCriticalSection
GetPrivateProfileSectionA
CreateSemaphoreA
GetCurrentThreadId
FindNextFileW
OpenFileMappingW

cfgmgr32

CM_Add_Empty_Log_Conf
CMP_Init_Detection

modemui

drvGetDefaultCommConfigA
CountryRunOnce
drvSetDefaultCommConfigA
InvokeControlPanel
drvCommConfigDialogA

Exports

Exports

tyuizxzaqwfret

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.gdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 703B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ