41fed866ee293c549416dbb6c97853c7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41fed866ee293c549416dbb6c97853c7_JaffaCakes118
Size

4KB
MD5

41fed866ee293c549416dbb6c97853c7
SHA1

d1cb185e0c76c639e6d3f1e10360aac462ac7fa0
SHA256

50b3361551326eedc6e3af244943cfd70accc1a3536fcc80f1cbe6dff1f41eb9
SHA512

d2f35088cf76ba53d44d3ad0ab98038f2cb9d08738cc5006eccba1a6a7abc7191e467f8da1e46d6133ba83a8adf60052d4a437b57f957d303131f795db93256e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41fed866ee293c549416dbb6c97853c7_JaffaCakes118

Files

41fed866ee293c549416dbb6c97853c7_JaffaCakes118
.exe windows:1 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ