2f143f79661ed6aa699079a159e30e6d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f143f79661ed6aa699079a159e30e6d_JaffaCakes118
Size

747KB
MD5

2f143f79661ed6aa699079a159e30e6d
SHA1

d75ee413f13f84e1df0e8c88deb2eeaa31449838
SHA256

39c43ba124c11ea415335e2de64b8d266454a11e3e167379b6efe4ac55f19ad4
SHA512

0ef2c5bc6ef11f0b0322ac3b43696153fa0307bde5e27439da14d3a082443c11da2ac7020e554c6f5ebc59edfea7e3fa71d5ad4599f80c109507d87c8b6f08e4
SSDEEP

12288:3RyTSk5U4g/n/t2EW5A0zyUvJwQ5oAlK+mtrvwbIk6bQQ52LgRg08yiHJn6M:BS5U4gf4EW5A23Jr/kjrvQIk6v3G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f143f79661ed6aa699079a159e30e6d_JaffaCakes118

Files

2f143f79661ed6aa699079a159e30e6d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

ʲô
Size: 644KB - Virtual size: 644KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Ŷ��
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��s
Size: - Virtual size: 7KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.��a
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.��s
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.r��
Size: 512B - Virtual size: 35B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.r��
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Ŷ��
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ