0b716788a4c6a624bbbee8d98ba29f16_JaffaCakes118 | Triage

Sharing

General

Target

0b716788a4c6a624bbbee8d98ba29f16_JaffaCakes118
Size

3KB
MD5

0b716788a4c6a624bbbee8d98ba29f16
SHA1

93f65c2695a8229c184092bcf5d49ec02bb5d800
SHA256

db9442b9977ec3b6d9468b359f869afe8ef4f50dd743d8e89da10aad76529071
SHA512

71a343b0999c4e03d1edf22e8cfed5f779fb8e40e199c78441c2d06d38467005fd65bcbf6ebd3f8132b5778225a5e4b83c5a439a889dad34d3a65509dd515d4a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b716788a4c6a624bbbee8d98ba29f16_JaffaCakes118

Files

0b716788a4c6a624bbbee8d98ba29f16_JaffaCakes118
.exe windows:4 windows x86 arch:x86

72f8b6cac57eab7cacc9e828a4895b41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetModuleFileNameW
GetModuleHandleW
QueueUserAPC
SleepEx
TerminateProcess
CreateThread

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 242B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ