2a77b91487627a3e6bc11804984c40e7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a77b91487627a3e6bc11804984c40e7_JaffaCakes118
Size

17KB
MD5

2a77b91487627a3e6bc11804984c40e7
SHA1

f05224281a54a923cc7be8ea06e1e3f04e60a391
SHA256

a1606e19784f984e912470e1adafbb3ce5a596b7617610229f432cdc77ba6aaf
SHA512

185a5cc98b9bc0ff702c56816bbbd4a5a8af01da8ed81d342d920398d253909ec0ef908bddfe09b680c62e0031703f75fcc47568d92c2a0743d30e8747fd6ca9
SSDEEP

192:JItTTPMHSTVZUL1Qg40civ0svTF7QPt8MrQ0GFSnHQM5yTg5:JSPn4y0B8svTFEV8MrCuQq2g5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a77b91487627a3e6bc11804984c40e7_JaffaCakes118

Files

2a77b91487627a3e6bc11804984c40e7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3cd86357dd7fc34ee7b3511eb7023ce3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetThreadPriority
IsDBCSLeadByte
VirtualAlloc
CreateMutexA
EnumCalendarInfoA
ReleaseMutex
GetNumberOfConsoleMouseButtons
SetEvent
PulseEvent
OutputDebugStringA
GetConsoleCP
lstrcpyA
GetUserDefaultLangID
GetModuleHandleA
TlsFree
GetThreadLocale
GetThreadTimes
GetDefaultCommConfigA
TlsGetValue
GetExitCodeThread

user32

GetWindowTextA
ShowWindow
GetWindowTextLengthA
ReleaseDC
InvalidateRect
GetActiveWindow
GetForegroundWindow
GetClassInfoExA
GetSystemMetrics
GetDC
GetWindow
GetClassNameA
ReleaseDC
RegisterClassA
IsWindowVisible
GetFocus
ValidateRect
IsIconic
CloseWindow

tapi32

MMCSetPhoneInfo
MMCSetServerConfig
MMCShutdown
MMCSetLineInfo
MMCInitialize

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ