5726ad7c7149699ec92f35c6486a7a45_JaffaCakes118 | Triage

Sharing

General

Target

5726ad7c7149699ec92f35c6486a7a45_JaffaCakes118
Size

3KB
MD5

5726ad7c7149699ec92f35c6486a7a45
SHA1

29577945e1a229741049c1e6a7156871df5b5809
SHA256

72f69b2ee432480490295acd1474798917fbd6424d7b969f215fa0e648d40bf8
SHA512

f38d47f2d847e0df048ccfe9722ab433829b0285c79d3f75961edfc99031fd1bb50e221ed918fdc3db484241385d911526a2765e3648e9631e8690085d31e222

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5726ad7c7149699ec92f35c6486a7a45_JaffaCakes118

Files

5726ad7c7149699ec92f35c6486a7a45_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b6f391375d741ab65301de3824d105be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateMutexA
CreateProcessA
GetLastError
GetModuleFileNameA
ReleaseMutex
lstrcpyA
lstrlenA

Sections

.text
Size: 1024B - Virtual size: 566B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 307B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 302B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ