2b075ef9af3e223242855a59522870dd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b075ef9af3e223242855a59522870dd_JaffaCakes118
Size

18KB
MD5

2b075ef9af3e223242855a59522870dd
SHA1

b3b1cab642839c147cbcce67efd17730a958b32d
SHA256

a61587ac906e3db58a7835dec3736ec14e0bb67bdb6eb45f49a4a1e5ab0bff60
SHA512

3940bcc34e9c6e2336be731fbc7f76098a0900e16ba8b0908749da5b24dcc43e75e8965c95bd19d78a1812833afb286091b3bc2bac6cc7154aa70a8042f8e949
SSDEEP

384:MOxB0VZ2P86kJMfjzsH87mFY7u6Ov1sFBCATJCOcWsRswPLTtMh:NIkP86zjb6t64FeC7b3vo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b075ef9af3e223242855a59522870dd_JaffaCakes118

Files

2b075ef9af3e223242855a59522870dd_JaffaCakes118
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.petite
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE