034ae57619eecf1596ea909ddcebe6e0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

034ae57619eecf1596ea909ddcebe6e0_JaffaCakes118
Size

498KB
MD5

034ae57619eecf1596ea909ddcebe6e0
SHA1

61a186a20ad234dcca01eb5300f83b13ff616866
SHA256

329de5a9d4a8e9c7b64b87b4fe18c4066b39a75d42de1c3c4c9aa99ed0ad4cb6
SHA512

8c302201298942ac99c08edc8564d9101cf0396fda6971ff7df8a58b473167773e597a0077c863538533c21954e49f154e3acdf2213ade725b11806c4c9ca3d2
SSDEEP

12288:YH392AQEFFhvxTq1PgWwjyemH5zO/kvcdmwqEmD87Yi:w92AQunxTgi2ZSM/wZR7B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
034ae57619eecf1596ea909ddcebe6e0_JaffaCakes118

Files

034ae57619eecf1596ea909ddcebe6e0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

253d3deac478edaf8105ba35d818201c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathCombineW
PathFindFileNameW
PathMatchSpecW
PathRemoveFileSpecW
StrCmpNIA
StrCmpNIW
wnsprintfW
wvnsprintfA
wvnsprintfW

user32

CharLowerBuffA
CharUpperW
DrawIcon
ExitWindowsEx
FindWindowExA
GetDlgItem
GetDlgItemTextA
GetForegroundWindow
GetKeyboardState
GetKeyState
PeekMessageA
SetThreadDesktop

Sections

.zgl
Size: 40KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lytgb
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.panil
Size: 5KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ