26aa2180ecf5b79adeed181740e56e09_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26aa2180ecf5b79adeed181740e56e09_JaffaCakes118
Size

2KB
MD5

26aa2180ecf5b79adeed181740e56e09
SHA1

57c29ec43f03a7659a643ed22469b415c8ac158b
SHA256

de1003004681b4905acde799125f0e3587f1222dbcd7a3cd1c49f135ac7117cb
SHA512

cfeb2335a7f626c94c3bd566fe4ed32f648460de2c8d306908cf9e22ac38c525061cf68e79c948193290ea8765d45eb5bf671e16f936498c6555f581c778e2c7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26aa2180ecf5b79adeed181740e56e09_JaffaCakes118

Files

26aa2180ecf5b79adeed181740e56e09_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4b12e0d406109217af8e8a830f65e157

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
WaitForSingleObject
CreateProcessA
ExitProcess
GetCommandLineA
CloseHandle

Sections

.text
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 218B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE