2e10b33c8ffd4aa47e4b6d80c5dcdab4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e10b33c8ffd4aa47e4b6d80c5dcdab4_JaffaCakes118
Size

114KB
MD5

2e10b33c8ffd4aa47e4b6d80c5dcdab4
SHA1

cb1700033719a7b3317a6350572a2439bd49061d
SHA256

9243f9cd6d5e48211dedcb244e888d83bf055297d99afdf2a8c24b2291802688
SHA512

2fd581c1587ce2788eb47cbef8881902ce4c0f2b7413f073e21362e4edcce8f35caad6376a50a0ff76863c91687cad6b84963b23890fe1fe3030c377f5d661d1
SSDEEP

3072:/XAtWYKBlVD1GIILYOLZpJoFnF6moAixmHyX7UK9:fAoYKXVD57OLDQ8mS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e10b33c8ffd4aa47e4b6d80c5dcdab4_JaffaCakes118

Files

2e10b33c8ffd4aa47e4b6d80c5dcdab4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE