c814780841f6b3a7d4ed7b6ad165862e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c814780841f6b3a7d4ed7b6ad165862e_JaffaCakes118
Size

3KB
MD5

c814780841f6b3a7d4ed7b6ad165862e
SHA1

33a8e3d30ebeb49dc4403c91bb2c12fc60ebf358
SHA256

9c8fb78e8cc678dbc72db231b39f6faf1cac56cd5f57ab5c2c3c039ebbf79810
SHA512

67048cf91552a69960df1f2d16041fe3f275052eeb8a1dc8fbeecb49672705c63635dd36abb8cc9a40520a32e5369a4ca3e744e734f11b61a4e4df130173e967

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c814780841f6b3a7d4ed7b6ad165862e_JaffaCakes118

Files

c814780841f6b3a7d4ed7b6ad165862e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0ec4053ee6878018f4f8bb972f8738e6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
CreateMutexW
LoadLibraryW
Sleep
GetTempPathW
GetLastError
GetProcAddress
CloseHandle

Sections

MiniPE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ