2b18610c2b596a798d942f8767c88fdf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b18610c2b596a798d942f8767c88fdf_JaffaCakes118
Size

116KB
MD5

2b18610c2b596a798d942f8767c88fdf
SHA1

8afd67b76135cb39efcdf2012c5bd588687aab1f
SHA256

15634f080006adc84b71e88f3067313ed3d45627283b14c1d86d5e3fe8c01007
SHA512

1655ec11da16193a49e87b915bed4c1584335404c0a23e78ffb28f9ae9036921a25ad6bf94b621abddd71300fdaef2b5b86faa08a7015631016966755399a25d
SSDEEP

1536:kfu2PWPO8SipFVOZsDQNcH7kQdb240suOtI/Or+w:hWXOFVisDlbDY40Ip

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b18610c2b596a798d942f8767c88fdf_JaffaCakes118

Files

2b18610c2b596a798d942f8767c88fdf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP

Sections

.
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TEXT
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Adata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.UDATA
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE