bccadfe0b0fd5e4b6f2c02af199fbfd9_JaffaCakes118 | Triage

Sharing

General

Target

bccadfe0b0fd5e4b6f2c02af199fbfd9_JaffaCakes118
Size

3KB
MD5

bccadfe0b0fd5e4b6f2c02af199fbfd9
SHA1

5eb004cbb20efdf05467c602233bbdeac0692851
SHA256

0b658bc5db4ad82f90adcb1a9e87ee7ad5d247cd0f52f34dc22b06b5a93c3a2f
SHA512

bffb81e92f04520bc379d1acaea32a6b70857ee1b581629ee3134a0e2c4c8f9c99ed73e0f86491c79671926bf73e31a36993ef703d6b7abebf2f878774c96107

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bccadfe0b0fd5e4b6f2c02af199fbfd9_JaffaCakes118

Files

bccadfe0b0fd5e4b6f2c02af199fbfd9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

72f8b6cac57eab7cacc9e828a4895b41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetModuleFileNameW
GetModuleHandleW
QueueUserAPC
SleepEx
TerminateProcess
CreateThread

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 242B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ