2dbe0761d3d207f2461c3089f0f0a347_JaffaCakes118 | Triage

Sharing

General

Target

2dbe0761d3d207f2461c3089f0f0a347_JaffaCakes118
Size

14KB
MD5

2dbe0761d3d207f2461c3089f0f0a347
SHA1

d1cb28e801cc16317ece411efb101ac875f2c32e
SHA256

0d2db8abdb616ebd3e662787c9d779327ccbf99b94735050cd67456975740915
SHA512

5533675f5f6a1e45737eef006b2bad99d2213d04169f6debd609db4b8db5d54e42e02301b49e5bdcd39fd0ede096920798cc5d88c6a59d85a4a65f3abb3d561e
SSDEEP

192:KtvDXW3l0vdV+/vuCXjEbBLdi4HY9L5bHv/aCAUL5VkO2O98o9/rzpOCBwLN:ev62vD6vlXiOhHv/tAULQO2K8o9zF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2dbe0761d3d207f2461c3089f0f0a347_JaffaCakes118

Files

2dbe0761d3d207f2461c3089f0f0a347_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RCryptor
Size: 22B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp0
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ