0030b7f3418c8a1ab32f6b0fab121805_JaffaCakes118 | Triage

Sharing

General

Target

0030b7f3418c8a1ab32f6b0fab121805_JaffaCakes118
Size

3KB
MD5

0030b7f3418c8a1ab32f6b0fab121805
SHA1

a9869075cc26abae83da091ba3bfe26bdea80934
SHA256

b8f187c12843f7cbc1d6fe25ccfa8b4bc361da5573bb0245ed794c0d5f8a59f7
SHA512

6022182592cc87dca3d6191eb4c78a8321b9ca37d562380903b1a87dddc5c40b6ec214f2b796e88ffb834ed28b0d5d193dc810b42b3cb50114a8291844d931d7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0030b7f3418c8a1ab32f6b0fab121805_JaffaCakes118

Files

0030b7f3418c8a1ab32f6b0fab121805_JaffaCakes118
.exe windows:4 windows x86 arch:x86

06da8ef6f2758f6d1db8767f9f25025c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
WinExec
CloseHandle
ReadFile
GetFileSize
ExitProcess
CreateFileA
GetTempPathA
GetModuleFileNameA
GetModuleHandleA

Exports

Exports

DF
LLibRary

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 401B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE