c152fef8722721323e1a7dff9936461d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c152fef8722721323e1a7dff9936461d_JaffaCakes118
Size

4KB
MD5

c152fef8722721323e1a7dff9936461d
SHA1

b8b4b2b4decbc1e77406abbebb7b3338fa369952
SHA256

14756eda6d09c87562e8022939f1a6665537a7ba88882334b0974f2ab569fca9
SHA512

04e7bac53429ae2e06581c28c2d97e99591c71e1ddf38f30a923ea100695cb1ec00027f1146ecc933011926642c4d7f4e29240239040879b43d8dc486db44643

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c152fef8722721323e1a7dff9936461d_JaffaCakes118

Files

c152fef8722721323e1a7dff9936461d_JaffaCakes118
.exe windows:1 windows x64 arch:x64

6203d37bfba54131ad3f37f853871722

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualAlloc

user32

CreateWindowExA
DispatchMessageA
GetMessageA
LoadCursorA
LoadIconA
LoadMenuA
RegisterClassA
ShowWindow
TranslateMessage

Sections

.flat
Size: 512B - Virtual size: 206B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.das34s
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dsad4fX
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ