de506ef19cdc0f72b86a141a89c376ae_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de506ef19cdc0f72b86a141a89c376ae_JaffaCakes118
Size

3KB
MD5

de506ef19cdc0f72b86a141a89c376ae
SHA1

503ed79624dd8816f19a2669e1eeec073a733b63
SHA256

8e5a9970977660ff8bcbee4dcea9d47453ae58ed4862aa534a576f2077a32d76
SHA512

6ed9ce1ef607af8dadca0b77d4a4e0d4af3a02c4d8d81ca20f796b2ff05e96a0f9775e122d5e2ba053405e9e58a94861055d0307692146566df30e7ea9492887

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de506ef19cdc0f72b86a141a89c376ae_JaffaCakes118

Files

de506ef19cdc0f72b86a141a89c376ae_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ce16db95e3cdb97c3f1372b701ba6306

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

kernel32

RtlUnwind

crtdll

__GetMainArgs
exit
raise
signal

Sections

.text
Size: 696B - Virtual size: 696B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 92B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 392B - Virtual size: 392B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE