dafe431261619834482c9792cf8950db_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dafe431261619834482c9792cf8950db_JaffaCakes118
Size

4KB
MD5

dafe431261619834482c9792cf8950db
SHA1

ab5affdf3220efd8dbdb306c4271d4359d4987a0
SHA256

7956abe02aef05b457fce9b52c569f0268f18b33bb94804bcc25b21cd0dd1d61
SHA512

bcb37736358bfc1b3489c51d6c3e1274cd64ff848b10b1fcc73f74f11e550abd1141597d6e031c9c46c499133a056c9fa367e5342d9d9fdbb2d0e13400213e5d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dafe431261619834482c9792cf8950db_JaffaCakes118

Files

dafe431261619834482c9792cf8950db_JaffaCakes118
.exe windows:1 windows x64 arch:x64

486cb93e2fe88f71cf410c6b75c93129

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetComputerNameA
GetModuleFileNameA
GetProcAddress
GetShortPathNameA
LoadLibraryA
VirtualAlloc
lstrcatA
lstrlenA

user32

MoveWindow
PostQuitMessage
ShowWindow

Sections

.flat
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.da
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cmapi
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE