a5e6b4fa45ff0180425018dccd641760_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a5e6b4fa45ff0180425018dccd641760_JaffaCakes118
Size

48KB
MD5

a5e6b4fa45ff0180425018dccd641760
SHA1

016eeb70a2edc444afc25a4a6ec8223a577191d0
SHA256

e34d0a43794e9e8ff4a2254ff9211e9e2b508439089ad589c1408b6fb7b6cfea
SHA512

4c0838e98aa79c5a23adc95fb72bda4505723fd3d4acfaec3c55fb34a90d43c4f092792f32e83cd61df46056c70eced5c88fead1219192ef200a88b8e01bea47
SSDEEP

768:fP/jrXj0RoVY9Jv4ZyX8fHc8pRLlvgelerOaD9TthDx7wo:/jT4RoVayhUWv32t9Tt7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5e6b4fa45ff0180425018dccd641760_JaffaCakes118

Files

a5e6b4fa45ff0180425018dccd641760_JaffaCakes118
.exe windows:5 windows x86 arch:x86

35ad42ebc22867b2746c733623f60e3e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultUILanguage

shlwapi

PathCombineW
PathMatchSpecW
PathRemoveFileSpecW
SHDeleteKeyA
StrCmpNIA
StrCmpNIW
StrStrW
wnsprintfA
wnsprintfW

user32

ExitWindowsEx
GetDlgItemTextA
GetIconInfo
GetMessageA
GetWindowTextA
MsgWaitForMultipleObjects
OpenWindowStationA
PeekMessageA
SendMessageA
ToUnicode

Sections

.cdux
Size: 39KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pun
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jglwd
Size: 5KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ