2b982550db1990cbde7a414b3e073b56_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b982550db1990cbde7a414b3e073b56_JaffaCakes118
Size

741KB
MD5

2b982550db1990cbde7a414b3e073b56
SHA1

ee48c2065197ed0805cecb907280f9318568a07e
SHA256

0f8878eaa3b8affe5c367aa5d567c1047ce63c0eb4b57e13c609050218c5bf05
SHA512

f46bf1f24160446b700e0f5ad4f46e6ba202af908155680cfceb0b3021e60f662987bb728221f7133a03e379247b57f6d4d6394f243200d965f4a3eda76409d5
SSDEEP

12288:dO4fZomQBxwm9mXF2RzbYHqfruoZXTLNb9YrSg9qYE4wY+FEvQPsQ/1sxhDm:dO3BxlaF2RzbYHqfruGXFb9Yf9fwY+W0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b982550db1990cbde7a414b3e073b56_JaffaCakes118

Files

2b982550db1990cbde7a414b3e073b56_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 516KB - Virtual size: 515KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ