2bb6bd1ce013fe808ed4451b681fe1ba_JaffaCakes118 | Triage

Sharing

General

Target

2bb6bd1ce013fe808ed4451b681fe1ba_JaffaCakes118
Size

64KB
MD5

2bb6bd1ce013fe808ed4451b681fe1ba
SHA1

77fc0f15f17ce8a51468ed4b6aaa3adee51a7e8b
SHA256

e3de211fea5e3ce2effd30367eea23d1c05f7d59f46904e2fb698ffda00da434
SHA512

8fd9d36c723225c403660e11055fcc177516b4cc143a392c16259e999099d81f303097cad8f51a4411786bbb84a492fa3259b71950a45aa9eeac3532e21e3c6a
SSDEEP

1536:c2ub6VJinejsAQeCNoK6WDThljju0tGqYE1Fm+:c2ubtn7ApAhFGyF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bb6bd1ce013fe808ed4451b681fe1ba_JaffaCakes118

Files

2bb6bd1ce013fe808ed4451b681fe1ba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d30e3b8d7ecba417b52bc3d5f668dc22

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumLanguageGroupLocalesA
GetNamedPipeInfo
HeapSummary
IsDebuggerPresent
WriteConsoleOutputCharacterA
EnumSystemLocalesA
GlobalDeleteAtom
GlobalFlags
VerifyVersionInfoA
GetSystemDefaultUILanguage
SetConsoleCP
GetTempPathA
SetCommBreak
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

rc60
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rc61
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rc62
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rc63
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ