181e30aea7ab3dfb411ab6b66257c996_JaffaCakes118 | Triage

Sharing

General

Target

181e30aea7ab3dfb411ab6b66257c996_JaffaCakes118
Size

17KB
MD5

181e30aea7ab3dfb411ab6b66257c996
SHA1

6ccc18a4e79b08d8eb1ccdb3686cf97ad524940c
SHA256

0fae4f55d4d0b1f6c38e7748330df9cb938d1e6e998a982a80ddf2f8acc8cd01
SHA512

ea15fb3889424079e2646c03d6f82eaea7d7211d42eef126f486d4a247f0ed7d855578a9064076e65b70baec9ce7b27f5e3a8038572c24fc7e2ddb474f4dac5f
SSDEEP

384:Jzzk9Ls61duayNfWB8svTFbGFvY0zeTvS:J9UvvVgv8TvS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
181e30aea7ab3dfb411ab6b66257c996_JaffaCakes118

Files

181e30aea7ab3dfb411ab6b66257c996_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80765f1482b578fb314e02a8d4eb1f43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDBCSLeadByte
GetThreadPriority
GetThreadTimes
GetExitCodeThread
PulseEvent
lstrcpyA
TlsGetValue
lstrcatA
GetThreadLocale
SetEvent
VirtualAlloc
GetConsoleCP
GetModuleHandleA
GetOEMCP
EnumCalendarInfoA
OutputDebugStringA
GetNumberOfConsoleMouseButtons
GetConsoleInputWaitHandle
GetUserDefaultLangID
TlsFree
ReleaseMutex

user32

GetSystemMetrics
ShowWindow
InvalidateRect
IsIconic
ValidateRect
GetClassInfoExA
CloseWindow
GetDC
ReleaseDC
GetFocus
GetWindowTextLengthA
GetWindow
GetActiveWindow
ReleaseDC
RegisterClassA
IsWindowVisible
GetClassNameA
GetWindowTextA
GetForegroundWindow

tapi32

MMCSetLineInfo
MMCInitialize
MMCSetServerConfig
MMCSetPhoneInfo
MMCShutdown

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ