2b6afa67bd42bf9a90ebc3b728b4ea41_JaffaCakes118 | Triage

Sharing

General

Target

2b6afa67bd42bf9a90ebc3b728b4ea41_JaffaCakes118
Size

132KB
MD5

2b6afa67bd42bf9a90ebc3b728b4ea41
SHA1

1846c2fe64583db394eca035af3d440da6fdf0ff
SHA256

864b1ce8feeed53db144afae131da20601bdf2951e198827177d40a233c490bd
SHA512

9beb8c95b16af39daa53232c6c2da797c146ac650441299d2d1fa73e6e6d677330b753dffe69169a7c53cbf0d210620225783e9e7d2e68d43bc1c3f6d6ff5936
SSDEEP

3072:lSv/w86RM2h6j8NhegaXX/iVlocS42Ve6:leIM2ybgMiVlvSx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b6afa67bd42bf9a90ebc3b728b4ea41_JaffaCakes118

Files

2b6afa67bd42bf9a90ebc3b728b4ea41_JaffaCakes118
.exe windows:6 windows x86 arch:x86

1b14362505ae628fd15c5bde0212ff09

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetScrollPos
GetKeyState
GetClipboardOwner
SetCaretPos
SetCapture
IsWindow

kernel32

GetCommandLineW
GetUserDefaultLocaleName
lstrcmpW

esent

JetCloseTable

Sections

sijJ
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mr
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PACK
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mw5PX6
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

J
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ