b094f4de78123f97d5706d283dcdabca_JaffaCakes118 | Triage

Sharing

General

Target

b094f4de78123f97d5706d283dcdabca_JaffaCakes118
Size

368KB
MD5

b094f4de78123f97d5706d283dcdabca
SHA1

4a57714b956749c52b9c4333dbcd4a239939efc0
SHA256

e6c311422ab333e3f98d66f7a0f90a186d426db8b59e614391efc71732e1adb7
SHA512

41402f11a592204c1056c7f23b77d0b6ea497235b2abd5be775d3b69df08f7a57e950f84d279ea76aa4e8f3d62231e4fd34a9ad18fcc84d27f373d054210feb4
SSDEEP

6144:9rPRM9+hrVf/DRauRHlwrFYaN5ino7241GtMqzIXPH8CV+mybPzKP3zUeXm9+r:dPRM9wrpDneFNzino7IUHybPzQjUeX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b094f4de78123f97d5706d283dcdabca_JaffaCakes118

Files

b094f4de78123f97d5706d283dcdabca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

14c2877ca74a2f8c09b502f8cbecc8b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
GetCurrentThreadId
GetModuleHandleA
SetLastError
GetCurrentProcessId
FindClose
LocalFree
ResumeThread
lstrlenW
GetConsoleAliasW
TlsGetValue
ReadFile
GetPrivateProfileStringW
HeapCreate
CreateEventW
FindAtomW
GetDriveTypeW
GetNumberFormatW
EnumCalendarInfoW
SetEvent

user32

GetSysColor
DispatchMessageA
GetKeyboardType
CallWindowProcW
GetClassInfoA
GetCursorInfo
DispatchMessageA
GetClientRect
IsWindow
SetFocus
GetMenuInfo
DrawTextA
GetKeyState

unimdmat

UmCloseModem
UmCloseModem
UmCloseModem
UmCloseModem
UmCloseModem

msasn1

ASN1BERDecBool

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 358KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ