ef29473989f0e22ad60d0392f7673018_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef29473989f0e22ad60d0392f7673018_JaffaCakes118
Size

4KB
MD5

ef29473989f0e22ad60d0392f7673018
SHA1

37201c910cbda3e61dbfecb5f7efba2bf19c990a
SHA256

e0a9c4ad2df970714b3f2bae924ed4f21239305bad4b65c9d437d10d5496de4a
SHA512

88e2db42c8966f1194cfeef17f6d0bfa6522e89ab681c770cb2da0745abebb8edc464f4f67a38a03ad006e98f5c620b3fc50e666577a32f5e0e2363b7c0a4648

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef29473989f0e22ad60d0392f7673018_JaffaCakes118

Files

ef29473989f0e22ad60d0392f7673018_JaffaCakes118
.exe windows:1 windows x86 arch:x86

88e869c313ce6466c7a8089c36597e08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc

user32

GetMessageA
MessageBoxA
MoveWindow

Sections

.flat
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DFec
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Vfds
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ