a9bdb86498705bb87f66caa6a69fc380_JaffaCakes118 | Triage

Sharing

General

Target

a9bdb86498705bb87f66caa6a69fc380_JaffaCakes118
Size

4KB
MD5

a9bdb86498705bb87f66caa6a69fc380
SHA1

3b1f086dab2bebc65166602c26c9f792c02f025e
SHA256

4d151a17a4f206ef7326799be429235c9f2ce72562f7a2f4bc5c56628afa1a04
SHA512

2517651e615ac7bd6cfe645df334fe451fd6ec697c8353078175f538d8fb90c9edb947cd9280aad2f151bb6cce236908b6af08072c8bdd0c3af4a836ab7ee4d3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9bdb86498705bb87f66caa6a69fc380_JaffaCakes118

Files

a9bdb86498705bb87f66caa6a69fc380_JaffaCakes118
.exe windows:1 windows x64 arch:x64

6203d37bfba54131ad3f37f853871722

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualAlloc

user32

CreateWindowExA
DispatchMessageA
GetMessageA
LoadCursorA
LoadIconA
LoadMenuA
RegisterClassA
ShowWindow
TranslateMessage

Sections

.flat
Size: 512B - Virtual size: 206B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.das34s
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dsad4fX
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ