2bd7b4467f64bd54883ff3b2ac4f95bd_JaffaCakes118 | Triage

Sharing

General

Target

2bd7b4467f64bd54883ff3b2ac4f95bd_JaffaCakes118
Size

100KB
MD5

2bd7b4467f64bd54883ff3b2ac4f95bd
SHA1

e809d761167eded1a86f538d687ebead3d334df8
SHA256

a9c93c829f5fc84dc63501e2fe7f28c5f2d6d30a75b91c614397147cdcbbd0e9
SHA512

568aea0bdbb649caf78c49f3d62380d922db5cfaefb16d09e50179857cf4fc5cd45f5f81847cd08c690a18353553161e7aa28d04f42d8a5e85ea66e215f3b6c5
SSDEEP

1536:Q0EuIzyLkiDIyVcZo/yG3iEoWTb4cQHikUfnOdN:TEuIViDIdcyG3D//OT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bd7b4467f64bd54883ff3b2ac4f95bd_JaffaCakes118

Files

2bd7b4467f64bd54883ff3b2ac4f95bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

DEMO
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DEMO
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DEMO
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DEMO
Size: 68KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newimp
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE