b6c20accd31f26269c9cb4a77e55afd0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6c20accd31f26269c9cb4a77e55afd0_JaffaCakes118
Size

4KB
MD5

b6c20accd31f26269c9cb4a77e55afd0
SHA1

f0329632828fdbcdf5a2f0aff6c5aea6b8b60db4
SHA256

0354b413cca03484dec625c13fdffaad2ae58c5cdba5c727cafce18906550523
SHA512

6bde30bbb222ac497f11e1d4ca644833dec5357480880f0092d214bdac578a06252185908d368bef97d3b40019b28e5c384e7ceb905409320f1238c5d77b6d1f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6c20accd31f26269c9cb4a77e55afd0_JaffaCakes118

Files

b6c20accd31f26269c9cb4a77e55afd0_JaffaCakes118
.exe windows:1 windows x64 arch:x64

6203d37bfba54131ad3f37f853871722

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualAlloc

user32

CreateWindowExA
DispatchMessageA
GetMessageA
LoadCursorA
LoadIconA
LoadMenuA
RegisterClassA
ShowWindow
TranslateMessage

Sections

.flat
Size: 512B - Virtual size: 206B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.das34s
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dsad4fX
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ