2c820b368c3611da87cc213e00daf205_JaffaCakes118 | Triage

Sharing

General

Target

2c820b368c3611da87cc213e00daf205_JaffaCakes118
Size

79KB
MD5

2c820b368c3611da87cc213e00daf205
SHA1

c163700af073002d89b5566a270087ea913a698b
SHA256

b74c8b13bc1a1cfe091cfe77c615ad8ca7c0be405e33247f9ebf235cb398eaae
SHA512

ccf629cd33dcd9e83ba6c45c729ad70933236e53e8d1528fa21acd91af7ad8716f0eb18b4fc122bf9b0b1140750c168f105b29a5645e97e4d275ddf1122ad9a6
SSDEEP

1536:kOLJjjchuqc/NOVp+7/HrsLvE5oK5dWZhEKcYmgyh59qnx5zVT0:dpAhuqc/Nw8LCvEqKDcEKkgyF+5x0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c820b368c3611da87cc213e00daf205_JaffaCakes118

Files

2c820b368c3611da87cc213e00daf205_JaffaCakes118
.exe windows:0 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 338KB - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 641KB - Virtual size: 644KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 960KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ