2b389db3a0aebec198cb9e41f55cfcf2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b389db3a0aebec198cb9e41f55cfcf2_JaffaCakes118
Size

23KB
MD5

2b389db3a0aebec198cb9e41f55cfcf2
SHA1

0aec33ae980670a31606d0fc4f81dd4f808ea85d
SHA256

30364b19c372f48252090d747ae15c31d237d5d6d54e2e62560b6c9a4fa08771
SHA512

08a13d5fb1a1e64567bc407bf56b1f9ca630421a7441acc80a7bfa6fe223301edf3cf028955a16aeb65e97f88e315aa9e25fe3dc228c83776754a0a2ac05cb98
SSDEEP

384:dVPofh9WJVT5UUMrwXzgjiYjsKaXXSnAXgKxw4m4pvFCHWJ6raK8y7mj:nQfXWJkrwE3sKanKAXfx3pJwWJ6Bto

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b389db3a0aebec198cb9e41f55cfcf2_JaffaCakes118

Files

2b389db3a0aebec198cb9e41f55cfcf2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8111320f794d9e62a7ffe5d84bed59a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualFree
VirtualAlloc

Sections

hmimys
Size: - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hmimys
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hmimys
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE