2b1700efa5294148288db733a263ea79_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b1700efa5294148288db733a263ea79_JaffaCakes118
Size

223KB
MD5

2b1700efa5294148288db733a263ea79
SHA1

d684686a79ebbeea6b092a2e9192a54842ebbe7a
SHA256

7e08a4754e334a03d3a75c3fee2187de33cab4bbc4e3f5c91fd09604776b0174
SHA512

25791cbce8e180f476a392a7d0960ef942941ff47d44cfa1c4d29cc88cd91c7c7775ff86a088ecb4f19cf04cd8cf602601e0d7801b6acdfa47323b4521f20e0a
SSDEEP

3072:nznb3EDKH4bx8ENCE54EvhraF3JvJaTe1zQHf5Opzq7iFtHXWUI3:zI+Yh8EFZra5Z/1zQBOBqeP3k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b1700efa5294148288db733a263ea79_JaffaCakes118

Files

2b1700efa5294148288db733a263ea79_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.rdata
Size: 110KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ