0a54685d2a1fd9c8e96d5b56764bad18_JaffaCakes118 | Triage

Sharing

General

Target

0a54685d2a1fd9c8e96d5b56764bad18_JaffaCakes118
Size

4KB
MD5

0a54685d2a1fd9c8e96d5b56764bad18
SHA1

8122b010edff9209bb4650dfea3772ff4587ae50
SHA256

b8a881a95401b03b11ecc8da6e28c661f2a889dc879bf0277d894b13de9f9596
SHA512

a031f01b23c2be161875e197277e1cfc0868f3fdb9428356c706e18dbbed4df872e5013df4de3755b48cd8e9492173be30cb7bdb083bf5519c2ff411a7bbd65b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a54685d2a1fd9c8e96d5b56764bad18_JaffaCakes118

Files

0a54685d2a1fd9c8e96d5b56764bad18_JaffaCakes118
.exe windows:4 windows x86 arch:x86

91b0b457f82a7fbb32539f78fb30508e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterHotKey
SetWindowsHookExA
GetMessageA
UnhookWindowsHookEx
GetForegroundWindow
GetClassNameA
GetWindowThreadProcessId
GetWindowTextA
GetKeyboardState
GetKeyState
ToAscii
GetKeyNameTextA
CallNextHookEx

kernel32

CreateMutexA
GetLastError
GetModuleHandleA
ExitProcess
GetLocalTime
GetDateFormatA
GetTimeFormatA
CreateToolhelp32Snapshot
Module32First
CloseHandle
GetComputerNameExA

advapi32

GetUserNameA

msvcrt

fopen
fclose
fprintf
fflush

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE