2ebb810eb997db88cb0b6d007503496a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ebb810eb997db88cb0b6d007503496a_JaffaCakes118
Size

2.9MB
MD5

2ebb810eb997db88cb0b6d007503496a
SHA1

44f33ed8c63e8f36689ade5423d51fbb7fe275e1
SHA256

80984cdfdf5cb41eb4a18f2c58973199e5f3537a2a4718948641a00c001e0f2b
SHA512

859ae9af693a4afb0d45855bcb55ec8ac0c5671e3bee7c2356f0b6b2baaa31571c9e9070aed9fbfe5e2d70996bb98632e9f0edbef7a4cb90de220e4038534405
SSDEEP

49152:k51Q7yAqaBndxJfhpxSDBAlRsmEqHitXLG3uicrzxHb9P8VpQZhX+2n6bRzd2W45:kerqanxXLZlRbEqmLG3exmIzXCtzcpJf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ebb810eb997db88cb0b6d007503496a_JaffaCakes118

Files

2ebb810eb997db88cb0b6d007503496a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

zsvobuqf
Size: 158KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tldfulxz
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uortylce
Size: 675KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zglydkfl
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE