2a8c495ad91d07ef3f91132195edd47d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a8c495ad91d07ef3f91132195edd47d_JaffaCakes118
Size

7KB
MD5

2a8c495ad91d07ef3f91132195edd47d
SHA1

0102f0e3e3f4d93c2c1a280d807caca3c22e96fe
SHA256

1ad8b6188492509a78ba19d878002662023a0765d813c29cda0785b544e45d6b
SHA512

248f034e80c2e49ad59ad7698dc0aa3752054bdbf57398d50b55e29ebe65687b591edeeeffe2847739aa0d3a6668acff26d9f3a370b6effd3227eeff1d883f8d
SSDEEP

192:zOEvHyKiEe9CiN+PyuE1ZCMoYBofyQUJeN6sbRX:HHyK07+quEsvjxo6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a8c495ad91d07ef3f91132195edd47d_JaffaCakes118

Files

2a8c495ad91d07ef3f91132195edd47d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd62de191a365b58ab967111dd3b5fd8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

StartPage
CreateICA

Sections

.text
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE