2ba384d9a5840be66c03b9753f4595af_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ba384d9a5840be66c03b9753f4595af_JaffaCakes118
Size

7.3MB
MD5

2ba384d9a5840be66c03b9753f4595af
SHA1

220727feedab103b72d2909b78fe2f2be76cab74
SHA256

eafd8958b4efc6d7dac7e74d4114f18571a17106c325fca6f6ebdc1b2157711d
SHA512

14f73fdf0a28da2d5add69aa52ca725eb1f950633e57936ed793adb492099fac3a6b7f5f814aaf43f9394aa9ead7f259f16dfa2437c2814d06e0ff33be08adf6
SSDEEP

196608:FC7lC4tLoKITYXM4pQLyJ9BITWf4J3/ykVxcp:FC44WrCMDy37s60xI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ba384d9a5840be66c03b9753f4595af_JaffaCakes118

Files

2ba384d9a5840be66c03b9753f4595af_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 16.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7.2MB - Virtual size: 7.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE