fd6ad1a34c97f187a6f2b45071e1c244_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd6ad1a34c97f187a6f2b45071e1c244_JaffaCakes118
Size

19KB
MD5

fd6ad1a34c97f187a6f2b45071e1c244
SHA1

086e1785a859737977df32edc493fa554f95b30c
SHA256

39154300abc7f97006ab75b536894e3970b33e03ce07e6acfbac4ae8367ba9ec
SHA512

8aaf139f7cc79e48ae24caf4e903ce264ec9908a200976143d1832cdd35e2187ee41575cf2fa492d54e351a6c5508f52afcb765de8a81cbc7be7d66e1d7d64e4
SSDEEP

192:JctTTPMGSqwlOwswsAtueZ+qR/vVy9X9lhywNO:JmPiTlgA7+8NctDywNO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd6ad1a34c97f187a6f2b45071e1c244_JaffaCakes118

Files

fd6ad1a34c97f187a6f2b45071e1c244_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e5a6fa20a3283f51fc88757985f28ba4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
TlsFree
VirtualAlloc
GetNumberOfConsoleMouseButtons
lstrcpyA
GetThreadPriority
EnumCalendarInfoA
lstrcatA
GetExitCodeThread
IsDBCSLeadByte
GetConsoleCP
GetModuleHandleA
GetOEMCP
TlsGetValue
OutputDebugStringA
PulseEvent
GetConsoleInputWaitHandle
GetUserDefaultLangID
ReleaseMutex
SetEvent
GetThreadTimes

user32

ReleaseDC
GetForegroundWindow
ShowWindow
IsIconic
GetFocus
RegisterClassA
GetClassInfoExA
GetClassNameA
GetSystemMetrics
GetWindowTextA
GetWindow
InvalidateRect
GetActiveWindow
GetDC
CloseWindow
IsWindowVisible
ReleaseDC
GetWindowTextLengthA
ValidateRect

tapi32

MMCSetServerConfig
MMCInitialize
MMCShutdown
MMCSetPhoneInfo
MMCSetLineInfo

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ