1f0856fbe05d2f7b6660be2a6464bf5e_JaffaCakes118 | Triage

Sharing

General

Target

1f0856fbe05d2f7b6660be2a6464bf5e_JaffaCakes118
Size

4KB
MD5

1f0856fbe05d2f7b6660be2a6464bf5e
SHA1

8b443d01b3d5e46ce91faae3fb8f759753247250
SHA256

7e6c5e0230a90ed5d3b803eb6131225443a74cc3809f94d6ea6e55512cb0a7d4
SHA512

76ae96ed224fa9a6cb4f0a15c8ebb79417fba38b718e0a5d9036ddd96aec74590e410a43dfa84a6dfadfe3936b3019ea4b80a29faf730b98d352da4931e6e2a8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f0856fbe05d2f7b6660be2a6464bf5e_JaffaCakes118

Files

1f0856fbe05d2f7b6660be2a6464bf5e_JaffaCakes118
.exe windows:1 windows x64 arch:x64

6203d37bfba54131ad3f37f853871722

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualAlloc

user32

CreateWindowExA
DispatchMessageA
GetMessageA
LoadCursorA
LoadIconA
LoadMenuA
RegisterClassA
ShowWindow
TranslateMessage

Sections

.flat
Size: 512B - Virtual size: 206B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.das34s
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dsad4fX
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ