08d0dc15007e3906edb5284c4794568a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08d0dc15007e3906edb5284c4794568a_JaffaCakes118
Size

3KB
MD5

08d0dc15007e3906edb5284c4794568a
SHA1

980a7c10f88cfcb4d7ae8257061582cee0548aba
SHA256

3945fbb19800139b9b3744b7dc984e2dddf0e5f18b2711d3f713973721bba2ef
SHA512

4ebecc26c8525e9bd4d532ab718978476c7f3b37b2cdf89d1889f0fd9988161489c70c0eabe87f34b05fabe51eb87911d4d5442fdd08131a3ee9bf79a8898002

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08d0dc15007e3906edb5284c4794568a_JaffaCakes118

Files

08d0dc15007e3906edb5284c4794568a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

72f8b6cac57eab7cacc9e828a4895b41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetModuleFileNameW
GetModuleHandleW
QueueUserAPC
SleepEx
TerminateProcess
CreateThread

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 242B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ