2fd56ce23396395e2eecfe015c11e3a8_JaffaCakes118 | Triage

Sharing

General

Target

2fd56ce23396395e2eecfe015c11e3a8_JaffaCakes118
Size

2.6MB
MD5

2fd56ce23396395e2eecfe015c11e3a8
SHA1

638d8ae74f4b50c63be51b13d3c9a4dbf9320230
SHA256

b0c6190854b8e128010c6d8f8f2a4e3d84770f9f4f6fb5cf6b57cb906b05a9fa
SHA512

e45f9f9a7659d7d13fa88bc29656213f4cc6decd60aa9415df02421268a2610eebd4d2efe2b254d3f82854bfb363e0497ccf1aefbcfb7866a88bf0754952e58f
SSDEEP

49152:yTKRXF2cZMG5LZGT4pnVPb/qb2nefuPpEuRT6tDvHU:y2RXESM8gT4pVD/qbwefuxEzg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2fd56ce23396395e2eecfe015c11e3a8_JaffaCakes118

Files

2fd56ce23396395e2eecfe015c11e3a8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 393KB - Virtual size: 393KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 253KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ