42d99bdac71307666c5e4f9a44f4cf76_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42d99bdac71307666c5e4f9a44f4cf76_JaffaCakes118
Size

4KB
MD5

42d99bdac71307666c5e4f9a44f4cf76
SHA1

1f387c92531591147ee715fb179a459af65a03ab
SHA256

a89c4c32a2bf0f3038f9902c771f03b08ac97a1f43db507c0ddfeb004db1a3b9
SHA512

3af2b20ab5802b2820fecf13938bf4ac027c8a584a789bb256d1d530bb35407a6e1e7506dceed248160d0bed993ba737ab36e0c7157aa374513754456bc8285c
SSDEEP

24:OEhu70HyxA8UtpIXABAyuBCPX1dUBbwsKkIScUadNB+fHHjXv3Z:OEPHIM2QBAyuBwX1tkISsIHHjXh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42d99bdac71307666c5e4f9a44f4cf76_JaffaCakes118

Files

42d99bdac71307666c5e4f9a44f4cf76_JaffaCakes118
.exe windows:1 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: