adc9295dd82e788dd9ae5351d2d90d8b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

adc9295dd82e788dd9ae5351d2d90d8b_JaffaCakes118
Size

3KB
MD5

adc9295dd82e788dd9ae5351d2d90d8b
SHA1

92b6f001d34facc4304485ed6cf97ca62eef5377
SHA256

9ab21e9fca88a3bf37d66b05c77e070ed10b719b7dd2b63580de6466845a286e
SHA512

05d47c5c7cc0c86754d7034923cb7f9495f46cabafc7ad77d53176d806f7a07f1b168436ad5e0c2ebe4f03ef717f353a1c4f8704e77489c458002ae7c4c76510

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adc9295dd82e788dd9ae5351d2d90d8b_JaffaCakes118

Files

adc9295dd82e788dd9ae5351d2d90d8b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6b42a2fdb32119553562c1b3b7c8a6f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
GetProcAddress
LoadLibraryA
LoadResource
LockResource
SizeofResource
VirtualAlloc
VirtualProtect
WriteFile
lstrcatA
lstrcpyA

user32

CharLowerBuffA

Sections

.Yoga
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE