a5731e2c4af26dc137d78c4ff63092c8_JaffaCakes118 | Triage

Sharing

General

Target

a5731e2c4af26dc137d78c4ff63092c8_JaffaCakes118
Size

68KB
MD5

a5731e2c4af26dc137d78c4ff63092c8
SHA1

29fc3445d388efd2ae840e65c58ed98f8440f876
SHA256

6f1149556c7e7434250ea08aa25acb01bcab7f9dd82d48e09072e7f53850a5d6
SHA512

b47a3bdaf771f8ea2e18a6b055ec1b260202816f081f1c89bd54d7975c5a82a3fe8e61d2e66ca97efa12f3f7340d5849ba1fdbf97d6142576ef0572ad3382e8d
SSDEEP

1536:c//leole2ErC8vd3XPeh+25K9b4MkKt/LfZk:a0u8vdn++25ULkkFk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5731e2c4af26dc137d78c4ff63092c8_JaffaCakes118

Files

a5731e2c4af26dc137d78c4ff63092c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

97b7d67d17b15114643b28efbb226790

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetPriorityClass
GetCommandLineA
SetCommMask
VirtualProtect
ExitProcess

user32

GetWindowTextA
GetWindow

shell32

StrChrA

Sections

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ