2bf8e72ac2f3ba578b3d3170a7ab176d_JaffaCakes118 | Triage

Sharing

General

Target

2bf8e72ac2f3ba578b3d3170a7ab176d_JaffaCakes118
Size

879KB
MD5

2bf8e72ac2f3ba578b3d3170a7ab176d
SHA1

493d0ffa71737c980eacb086552ad3de03239620
SHA256

c96d9415cc84b1a56580434a71fe1c1e3af27b3f16a5c930f793b00148ec0ced
SHA512

85b814d59d0dfa2a203cce15c3b7896b2dfb8ba2938faeb4edd9ecf83fd476e07af5e10a8a2496ba97ce9872432c11943940241153548042ae4c1be1016c369a
SSDEEP

24576:yw8qVuUB9XUJ6irTxaTj6h9up/fjOiL8VL9NFc:jDu6hUo8wvdpiiLeL9NFc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bf8e72ac2f3ba578b3d3170a7ab176d_JaffaCakes118

Files

2bf8e72ac2f3ba578b3d3170a7ab176d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 3KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 719.0MB

.dlcolr
Size: 869KB - Virtual size: 872KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ