73ef099e6e2251f37433f14edf101fa8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73ef099e6e2251f37433f14edf101fa8_JaffaCakes118
Size

19KB
MD5

73ef099e6e2251f37433f14edf101fa8
SHA1

579d4edbe54524deaafe79b753e213840962c555
SHA256

1885067d9efed16f050e71d073e2e944058e6fcc36ba5fef6d50745e8ca3843b
SHA512

719f971690610a3746147a0d41f7dc5a21b3bccf6fdb77512ba793e66808739d4bc2343f46e2a6164e80d0e612e7245a51a94b084e33095a78f76e7ad2b6e8a4
SSDEEP

384:OXaNM0LSkWZyy9md9Je2OCBviBseTRmqRA5i9Sh8eChhhh5Q6N8ZB:OquSHy927OCBKBseTgqO5i9ShTChhhh2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73ef099e6e2251f37433f14edf101fa8_JaffaCakes118

Files

73ef099e6e2251f37433f14edf101fa8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

658fd1ee48fdb822f2b5e21891c4174f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
CreateMutexA
GetThreadPriority
CompareStringA
PulseEvent
TlsGetValue
GetConsoleCP
ReleaseMutex
GetDefaultCommConfigA
SetEvent
GetExitCodeThread
VirtualAlloc
GetModuleHandleA
GetUserDefaultLangID
TlsFree
GetLargestConsoleWindowSize
GetThreadTimes
GetThreadLocale
CallNamedPipeA
AddAtomA
IsDBCSLeadByte

user32

GetWindow
GetWindowTextLengthA
GetClassInfoExA
GetSystemMetrics
ReleaseDC
GetClassNameA
ShowWindow
IsIconic
GetForegroundWindow
GetActiveWindow
GetFocus
GetWindowTextA
GetDC
ReleaseDC
IsWindowVisible
ValidateRect
CloseWindow
InvalidateRect
RegisterClassA

tapi32

MMCSetLineInfo
MMCSetServerConfig
MMCInitialize
MMCSetPhoneInfo
MMCShutdown

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ