24116be35c97a19167c76bef53ee369e_JaffaCakes118 | Triage

Sharing

General

Target

24116be35c97a19167c76bef53ee369e_JaffaCakes118
Size

2KB
MD5

24116be35c97a19167c76bef53ee369e
SHA1

9bfc9430ea7f92f6cba4f9901fbc3391ff02dadd
SHA256

a2361390b6129b166aafd335b5acf49a3da31d17595a6c4b14021adac3d97824
SHA512

384a4958ea9893acca5b1dba4b52e51ff2843a3e64afbeefab4964e2da39a6125c30463c14554b6eb2ff5c2e044faa830d88e7b53d723f2b813e9d0adabba438

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24116be35c97a19167c76bef53ee369e_JaffaCakes118

Files

24116be35c97a19167c76bef53ee369e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

39415c9cf959cb88b888deb0f7ae02f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
wsprintfA

kernel32

WinExec
WriteFile
Sleep
CloseHandle
CreateMutexA
ExitProcess
GetCommandLineA
OpenFile
OpenMutexA

wsock32

connect
gethostbyname
recv
send
socket
WSAStartup

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE