2949685b03dfd76802855edb98664d2a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2949685b03dfd76802855edb98664d2a_JaffaCakes118
Size

281KB
MD5

2949685b03dfd76802855edb98664d2a
SHA1

2d688c8231ebde57a412a98c0b8a96a79c1e3363
SHA256

5397ec37b5c9b89c8774554c4cd5dc01e1b178c6ece74f9abfb47fd1869acd81
SHA512

cfd2339791cb7c5099c581ae691a8e77ac40e22bced3a6d531ec8ad506c42fd4ecc7a4e693dd4ebfdf50d0bda5cc96c3c8c482334f4f8008c4e96df0558b55fb
SSDEEP

6144:n/96YTBKlMhHgQW6vwJcxZd0dSyIIvqkUu9jTEL8ANld:n/96U6MFDWgT0HIIykTty8sl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2949685b03dfd76802855edb98664d2a_JaffaCakes118

Files

2949685b03dfd76802855edb98664d2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

q+�0
Size: - Virtual size: 920KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

q+�1
Size: 234KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

q+�2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

q+�2
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

q+�2
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ