440de45bcd76351a57179ea3d0b2bf74_JaffaCakes118 | Triage

Sharing

General

Target

440de45bcd76351a57179ea3d0b2bf74_JaffaCakes118
Size

2KB
MD5

440de45bcd76351a57179ea3d0b2bf74
SHA1

526a09393b66f33211ffe5766fb34f5c8f00e2fd
SHA256

9f45c372e9f5ba45108b2ae02a24c1a6584197a580a750f5939811cf570c9962
SHA512

75482ce8d983fd87f5d1a518c278c1d424d75af30e7b3365d2c44913866a25e4bf184bad62b2bb03e897cb3dc364e6ab346e89e20e17a96bf8827bdc3f7d3ada

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
440de45bcd76351a57179ea3d0b2bf74_JaffaCakes118

Files

440de45bcd76351a57179ea3d0b2bf74_JaffaCakes118
.dll windows:4 windows x86 arch:x86

203ba947d018558bc117a3c868684759

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileA
GetWindowsDirectoryA
WinExec
WriteFile
lstrcatA
CloseHandle

Sections

.text
Size: 512B - Virtual size: 158B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ