e9d7b4853d754fdea25ea06aca8f40de_JaffaCakes118 | Triage

Sharing

General

Target

e9d7b4853d754fdea25ea06aca8f40de_JaffaCakes118
Size

3KB
MD5

e9d7b4853d754fdea25ea06aca8f40de
SHA1

f1400f58fdba8f42e3ff41c65c8d1125a346b488
SHA256

7a5eb7ce4148a216fa89c9a52602583aba865172cf7ef85bf7a479a8ac578e94
SHA512

b6e7d97f0d67567e6654fa50878138cde6a4b26c6ae4246286b6ca1d5e9bb9b832b1ec7ab1cf15551f984183a99448af48bd31dac967a22db7fe6d17dfe2efaf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9d7b4853d754fdea25ea06aca8f40de_JaffaCakes118

Files

e9d7b4853d754fdea25ea06aca8f40de_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3746289c4eaccde50b67772f5be2fb9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetModuleFileNameA
GetModuleHandleA
QueueUserAPC
SleepEx
TerminateProcess
CreateThread

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 242B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ