643d6f90f0208494a81137fc198bc75e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

643d6f90f0208494a81137fc198bc75e_JaffaCakes118
Size

1KB
MD5

643d6f90f0208494a81137fc198bc75e
SHA1

338c9e958c73c3951ee3bb2f7454d0b537f536fa
SHA256

774a7f51e8bd2ab26c846d532b7ca24d73289fc5bf51c5ca6ba127538ee7f19e
SHA512

876cdba364ca463b3077090ac3b1ff874e6e92a7dccd3d21161a85b6e7dcaa1c772bd5a9acf5edb4dc2e56dd2ab9cbec4b799d3f4856a0135f24bba60a0c6b85

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
643d6f90f0208494a81137fc198bc75e_JaffaCakes118

Files

643d6f90f0208494a81137fc198bc75e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

.text
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

stalin
Size: 50B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ