ada2665595637dba707f993160b54e8e_JaffaCakes118

General

Target

ada2665595637dba707f993160b54e8e_JaffaCakes118
Size

451KB
MD5

ada2665595637dba707f993160b54e8e
SHA1

d3a4abd55caddf6df0c670e491fd5327d241553d
SHA256

1b7ee8ad159c1f61a052e243eab7d556355168bbf586d1f62d8ed4a3c2dd8e48
SHA512

4518e10e5d64b9b442abeb247d81d47f3af752763f2c5a1176c298731bbab438168dfbf387b96fd872018bb5e45a4f70080f7bf0444901f200a2dbad8d68cff9
SSDEEP

12288:WbWO0tFU0XtmtX41zT8DqLqnXzDuAFGWomA3hs:hFUKUW1v8GLqnXfu2a6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ada2665595637dba707f993160b54e8e_JaffaCakes118

Files

ada2665595637dba707f993160b54e8e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b47fb805a425b9a22b9a22c64bf7b0e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDBCSLeadByte
lstrcpyA
ReleaseMutex
lstrcatA
GetConsoleCP
GetThreadTimes
OutputDebugStringA
GetOEMCP
PulseEvent
GetNumberOfConsoleMouseButtons
GetExitCodeThread
GetConsoleInputWaitHandle
GetUserDefaultLangID
SetEvent
GetThreadLocale
TlsFree
GetModuleHandleA
VirtualAlloc
EnumCalendarInfoA
GetThreadPriority
TlsGetValue

user32

GetActiveWindow
GetWindow
GetForegroundWindow
CloseWindow
GetFocus
ShowWindow
IsIconic
ReleaseDC
ReleaseDC
InvalidateRect
GetDC
GetWindowTextLengthA
RegisterClassA
GetClassNameA
GetSystemMetrics
GetWindowTextA
GetClassInfoExA
IsWindowVisible
ValidateRect

tapi32

MMCShutdown
MMCInitialize
MMCSetPhoneInfo
MMCSetLineInfo
MMCSetServerConfig

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Tls
Size: 512B - Virtual size: 33B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b47fb805a425b9a22b9a22c64bf7b0e9

Headers

File Characteristics

Imports

kernel32

user32

tapi32

mlang

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 1.3MB

.Tls Size: 512B - Virtual size: 33B

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 1.3MB

.Tls
Size: 512B - Virtual size: 33B

.rsrc
Size: 4KB - Virtual size: 4KB