c95d10458162901194127242c0eaa12e_JaffaCakes118 | Triage

Sharing

General

Target

c95d10458162901194127242c0eaa12e_JaffaCakes118
Size

4KB
MD5

c95d10458162901194127242c0eaa12e
SHA1

41a6ea6c37db76c27b1d2430295ee1c1e82d7c9c
SHA256

0d6f9e2bc2681ddb753f3bf8d2931936de27fc6da32034b7647904c46fa06c85
SHA512

c50e7066ab64c05fcf1ca14cf97fc2648675de3397e2b068e828da0299a0b08c6525a9b4ed54354938129c0ed9386c274bf430a5ac8aa29910bb4b8627ab4f67

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c95d10458162901194127242c0eaa12e_JaffaCakes118

Files

c95d10458162901194127242c0eaa12e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

e73faf584d28aeda8b8cd6a5a585c2f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc

user32

MoveWindow
PostQuitMessage
ShowWindow

Sections

.zxdae
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.dacre
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.das342d
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ