d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118
Size

7KB
MD5

d24069f365f21c6b1147c816ffe34c2a
SHA1

a5296101631be4b311a7c81fbd2a4b4e7d826ca4
SHA256

d9eb17bd9c9879a508422f6d704bd2bbe14890732d6a53dbd953d1e127cdc099
SHA512

4608fcd30ca9d3211457dbd3bf28d4d5db11a7dceaed8d76b8431c04008e5f68170b3d030ec9162cfd518c88ec99b8d88b30ddef403243ef334386d63dc6e72d
SSDEEP

192:UaBxQuMCWpYk4lrx79OtDdO2Pvf8ufHp:B/MCWpYkKVwtBO2PHHf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118

Files

d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdc123cee95303b1c720bddd4f226317

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
SleepEx
GetTickCount
VirtualFree
GetCommandLineA
Sleep
GetStartupInfoA
VirtualAlloc
QueueUserAPC
IsDebuggerPresent
GetVersionExA
CloseHandle
GetCurrentProcessId
CreateThread
lstrcpyA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 818B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE