2e3344d2242698798b5dfb09f8911e66_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e3344d2242698798b5dfb09f8911e66_JaffaCakes118
Size

25KB
MD5

2e3344d2242698798b5dfb09f8911e66
SHA1

dc3f4f88216a6bdfc6c7b299ff28f43d921772d3
SHA256

e445c9bab9abe662b27a04f1e2721645180f3ca49df2bb531448998cb15e2858
SHA512

94ebc3481801a611657c640a9fcb9b63675c085b4a3479d28b3a7be06f6459541853ef12073303f23e318be6d43b2f67da4cdbf3af87db6ab3b54d5546daa174
SSDEEP

768:2d6DUXRwaRD50/JGOJxqLoI4Y/ig4RoFMZe:2d6D8waJ50/J6l/Z4Roj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e3344d2242698798b5dfb09f8911e66_JaffaCakes118

Files

2e3344d2242698798b5dfb09f8911e66_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cj
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Xiao
Size: 128B - Virtual size: 128B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE