2ff4a7350e43688f87c3993bc678e83b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ff4a7350e43688f87c3993bc678e83b_JaffaCakes118
Size

3.8MB
MD5

2ff4a7350e43688f87c3993bc678e83b
SHA1

2d83820487b743fd5af18cf188cef497f7fa7303
SHA256

01df61ba7bd4efdc2f1cb8c54afd9992bc0cedfb518faec1696375795ee68b9a
SHA512

bcb5cb79c95aa72412536da7c7d9293a258b6e3036d47f7ac724f243f2868bfdb328bff608b601706e0da4bbb4fd4946d59092db8dce17f1592b97fb7660596c
SSDEEP

98304:3L3JFDp45vSxpTN1ngjv6V44KQn4M7IkR:3L3JFl4AT8044VfR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ff4a7350e43688f87c3993bc678e83b_JaffaCakes118

Files

2ff4a7350e43688f87c3993bc678e83b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ