be1dcd329f921a7a69d5974d836e46c7_JaffaCakes118 | Triage

Sharing

General

Target

be1dcd329f921a7a69d5974d836e46c7_JaffaCakes118
Size

23KB
MD5

be1dcd329f921a7a69d5974d836e46c7
SHA1

52e61448f0786b6c7b86c1adcbce4d113986bf9f
SHA256

63f0e388690d04bd5d8fab89c28a85b256389a4c8cc1d8e2d35a0808909cb3ea
SHA512

acccc6c3126c1e3e4640c112ccc3d137346cf5ec64e41b174eb6d79a8ef326026e62dc84295d767ee90387d40305d220e34455228e57e47a98157314107d61c1
SSDEEP

192:JhtTTPMHSyXjdldwsAtxbtHd3K5osLuQuSnHP4ss/NQvT/4BJFUFa5DuTIMt:JfPnyXnAXRd3K55xVs/NQL/Ema1uT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be1dcd329f921a7a69d5974d836e46c7_JaffaCakes118

Files

be1dcd329f921a7a69d5974d836e46c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

77f0b76b66c40483aff526973aefaf0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
TlsGetValue
GetThreadLocale
VirtualAlloc
SetEvent
GetExitCodeThread
ReleaseMutex
GetThreadPriority
GetConsoleCP
GetModuleHandleA
lstrcatA
EnumCalendarInfoA
PulseEvent
GetThreadTimes
lstrcpyA
TlsFree
GetOEMCP
OutputDebugStringA
GetConsoleInputWaitHandle
GetNumberOfConsoleMouseButtons
IsDBCSLeadByte

user32

GetClassInfoExA
GetForegroundWindow
GetWindowTextA
RegisterClassA
InvalidateRect
GetActiveWindow
GetDC
IsIconic
GetWindowTextLengthA
CloseWindow
ReleaseDC
GetClassNameA
GetSystemMetrics
ShowWindow
GetWindow
IsWindowVisible
ReleaseDC
GetFocus
ValidateRect

tapi32

MMCSetPhoneInfo
MMCShutdown
MMCInitialize
MMCSetLineInfo
MMCSetServerConfig

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ