2e2fc8fb7703e7a397c7f259ccba9170_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e2fc8fb7703e7a397c7f259ccba9170_JaffaCakes118
Size

311KB
MD5

2e2fc8fb7703e7a397c7f259ccba9170
SHA1

2740f2d8d82c0948b26c425178ff9ae5c1ed8500
SHA256

a920ebfc6f55e5c3c003e0f670a1096815c7cee7983b9d56b64feed5ce06b2de
SHA512

4c0ff98b0f11fa6f5f226948b50a71962183ec0a5ee66a2c08cbd956a1a781c0c7c34fdcf59a99025528c8d5e01bdcd61ddc76ede3fd3fdee2dc7f31e524605c
SSDEEP

6144:O8UChSrgTe67Ooaqvgho3PeyYD1SsnwdhPcUmScMpBzqvK3gqy/d:H9grPoaqCRyYESspzqvK6/d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e2fc8fb7703e7a397c7f259ccba9170_JaffaCakes118

Files

2e2fc8fb7703e7a397c7f259ccba9170_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

]JlgK0?9
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

>'A]/%4O
Size: - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

i>VGc1u
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

:_be90[I
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qB*dEGYZ
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cKJ6e(Pe
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

6u?Jk/(T
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

gp@MS Gi
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

x+Jd<eV6
Size: 310KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE