250a19535986c8f9b17feef2f30ca2c9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

250a19535986c8f9b17feef2f30ca2c9_JaffaCakes118
Size

451KB
MD5

250a19535986c8f9b17feef2f30ca2c9
SHA1

0e962bfd856f50e90ed9b11c9c42bc91264662e8
SHA256

ed6b220c8398c321b310bc3ad481395ed50d28589881cbc757e9cfda57030d67
SHA512

794d0bfcb548753696baf1b7c5c5ba512d3a5656e04cfe850ee9326e29c3346e9298461859587febf65a52a7000a40fec5cb66616f8a778d2a53e894ac8e3638
SSDEEP

12288:dr+41AoiOy2Q9hkuu5NmcXTddampPjyZKg9c2Zcp0k:A4CoG28GN5ddjeKcc2Zcp1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
250a19535986c8f9b17feef2f30ca2c9_JaffaCakes118

Files

250a19535986c8f9b17feef2f30ca2c9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a44af08f02a4b4befe5469a8be63602

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
CreateMutexA
GetDefaultCommConfigA
TlsGetValue
GetUserDefaultLangID
AddAtomA
GetLargestConsoleWindowSize
IsDBCSLeadByte
GetThreadPriority
PulseEvent
GetConsoleCP
GetModuleHandleA
CompareStringA
GetThreadTimes
VirtualAlloc
TlsFree
GetThreadLocale
ReleaseMutex
SetEvent
CallNamedPipeA
GetOEMCP

user32

RegisterClassA
GetWindowTextA
GetWindowTextLengthA
GetClassInfoExA
GetClassNameA
GetWindow
InvalidateRect
ReleaseDC
GetActiveWindow
GetDC
ReleaseDC
ValidateRect
GetForegroundWindow
IsIconic
ShowWindow
GetFocus
IsWindowVisible
CloseWindow
GetSystemMetrics

tapi32

MMCInitialize
MMCSetLineInfo
MMCSetServerConfig
MMCShutdown
MMCSetPhoneInfo

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 33B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ