afcdaf38ae402ab62388cec6483224e6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afcdaf38ae402ab62388cec6483224e6_JaffaCakes118
Size

19KB
MD5

afcdaf38ae402ab62388cec6483224e6
SHA1

e867e20ba8d9e3a7a4a7bd2f248ca35ffc294f23
SHA256

975c3cb8a56bb3e90636c01c036ad420b103fdd4405554a052791c8398a8a58d
SHA512

ff417b902059b2b5266f8bd0933da8cce4ee58cb62a85c96b3b52019b941bd64a0ea992fb08ba97c0e62ba85c94c464e4f0af84f6af67f9be1633e51ded381cb
SSDEEP

192:JA01tTTPMGSviMwsAt/2HJndo8/7crVvVy9X9lhywNO:JA0zPiaWA8HFm8TcBNctDywNO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afcdaf38ae402ab62388cec6483224e6_JaffaCakes118

Files

afcdaf38ae402ab62388cec6483224e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e9dadb656f8dca8a5628c849c95273b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetThreadTimes
GetConsoleCP
GetConsoleInputWaitHandle
EnumCalendarInfoA
TlsFree
GetUserDefaultLangID
GetModuleHandleA
GetThreadPriority
OutputDebugStringA
lstrcpyA
GetExitCodeThread
SetEvent
lstrcatA
GetNumberOfConsoleMouseButtons
IsDBCSLeadByte
TlsGetValue
PulseEvent
GetThreadLocale
ReleaseMutex
GetOEMCP

user32

GetClassNameA
ReleaseDC
ValidateRect
IsWindowVisible
GetForegroundWindow
GetActiveWindow
GetFocus
GetWindow
ShowWindow
InvalidateRect
IsIconic
GetWindowTextA
GetDC
GetWindowTextLengthA
RegisterClassA
ReleaseDC
GetClassInfoExA
GetSystemMetrics
CloseWindow

tapi32

MMCShutdown
MMCInitialize
MMCSetPhoneInfo
MMCSetLineInfo
MMCSetServerConfig

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ