c28df2a303a3c1fee6e9bc495b14fd39_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c28df2a303a3c1fee6e9bc495b14fd39_JaffaCakes118
Size

53KB
MD5

c28df2a303a3c1fee6e9bc495b14fd39
SHA1

ebbc83d1e33177e8c3a7f4e30441006ee94eff60
SHA256

a254ea2b171731cad312336655b1c47e6f47abe7f53f306f0cd8d07fe6a6695a
SHA512

0438bb31fc8d025b16e4250f46e61b3730875ccf36a8e8b11d45e2b565ce896058692897a76a7d147361d38c7c0a1911213fd88bb1bee493fbcb48035377adad
SSDEEP

768:Vp6ANOPHRxQ0WhRNqwI+rIDRRETI/z8lUDO/qZRRUqmTG663NAwFHSqD:z6ANOJfkNVnEtR+Oqd/qRBmT+Byq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c28df2a303a3c1fee6e9bc495b14fd39_JaffaCakes118

Files

c28df2a303a3c1fee6e9bc495b14fd39_JaffaCakes118
.exe windows:5 windows x86 arch:x86

17a46810e324add882df05f8e516b0b9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SystemTimeToFileTime

shlwapi

PathCombineW
PathFileExistsW
PathFindFileNameW
PathMatchSpecW
PathRemoveFileSpecW
wnsprintfA
wnsprintfW
wvnsprintfA
wvnsprintfW

user32

CharUpperW
CloseWindowStation
EndDialog
ExitWindowsEx
GetCursorPos
GetDlgItemTextA
GetForegroundWindow
GetIconInfo
GetKeyState
SendMessageA
SetProcessWindowStation
SetThreadDesktop

Sections

.qjmhul
Size: 43KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pmp
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zmzmr
Size: 5KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ