41f1fc97c07e31daeb9f45930188aa48_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41f1fc97c07e31daeb9f45930188aa48_JaffaCakes118
Size

7KB
MD5

41f1fc97c07e31daeb9f45930188aa48
SHA1

25b1b8982d78e686ba22ecf0f272c04f7843eb41
SHA256

2f3c1c8439a7af9418b8ae51a62e3dc581a43586723e25c11dda75e8f595685c
SHA512

b4a8185cfeac31c5fe65cf22cbc0725f4fffebc9f5fd81021956830543d3ba1617070f3afa76c5ffb8c32f3a370d93f6dcb1d7793636903cfc9652c66847c63f
SSDEEP

6:MxlEh/jKjXFeyclltAf1RbljV/lK/3pW4VaTKSwSB2Fl:OEh/G70yUQf1qZZ0JwSBEl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41f1fc97c07e31daeb9f45930188aa48_JaffaCakes118

Files

41f1fc97c07e31daeb9f45930188aa48_JaffaCakes118
.exe windows:1 windows x86 arch:x86

fdee84280fb301b198c2b2b274149cab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MessageBoxA

kernel32

Sleep
ExitProcess

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE