958e6e0310cd6ab0626540e26fb2f631_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

958e6e0310cd6ab0626540e26fb2f631_JaffaCakes118
Size

2KB
MD5

958e6e0310cd6ab0626540e26fb2f631
SHA1

fce07daf7b8cab85df440fc856bed31307677768
SHA256

149050c4f1ac6520bdeb3d8f9080ef0416eee645ae8ec67d58720c27b4d51b2e
SHA512

681985a134240e7d6cc29e7ea1be6810fe0b666f803cd0b70fe7f98e3b9f67c480efb11a5b947a2549161f1eaf4432515648d5eb047d0bb34601c664d4e61a1f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
958e6e0310cd6ab0626540e26fb2f631_JaffaCakes118

Files

958e6e0310cd6ab0626540e26fb2f631_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dcb7c983e02df877502a66f3c833febd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CopyFileA
CreateFileA
ExitProcess
GetSystemDirectoryA
_lwrite
lstrcatA

shell32

ShellExecuteA

Sections

.text
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 586B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE