2b8896156bb3cb0c11db565f2211876d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b8896156bb3cb0c11db565f2211876d_JaffaCakes118
Size

880KB
MD5

2b8896156bb3cb0c11db565f2211876d
SHA1

572dc65250abb8b8c15178473272b6241dcc75a0
SHA256

1a2b2abd6de134b63bf9deb563bb820d3b760bd3d3e386a6e461ffe4604a572a
SHA512

01ee4bd8fa2046d51b20b3d3f8ebbdd73fd66af091b645d4b9818390bae793a90bfce2153e4710b7e030b55e25935b047473f213d6be18251d9c0ac50e9ac1c2
SSDEEP

24576:pajkO6B08x/jgbFb3E9moFMoi5iFbnrP/g:sjb56UBzEooFlRnrng

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b8896156bb3cb0c11db565f2211876d_JaffaCakes118

Files

2b8896156bb3cb0c11db565f2211876d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

qycjdpve
Size: 188KB - Virtual size: 864KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wbihmxah
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zcthjtcq
Size: 652KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gtmirhon
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE