2cecc882e8c518d1068877c2a8d5ac23_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cecc882e8c518d1068877c2a8d5ac23_JaffaCakes118
Size

83KB
MD5

2cecc882e8c518d1068877c2a8d5ac23
SHA1

05d2a4ecebefc1cf0f373b1232be33c909ffe205
SHA256

7aeacf76d6f676f6df6b0bad98f73052c68673d94d9568bef04f3f0f533cf1ce
SHA512

e87179dc954c8a63d75c92a52f4b520a7c0f331fe42be8ad7dde490462eb6aa4a2eee4d410e6e2fa4934ba571849fc18adb59cf585a7b58d6ea3b916a49d00fc
SSDEEP

1536:1Xk/3xrgtjC47ice4aRbsAeZMOSI+xIaPQXsLuv74nceh8Bx:2/3xctjCJX4aRbWZIKjGOeox

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cecc882e8c518d1068877c2a8d5ac23_JaffaCakes118

Files

2cecc882e8c518d1068877c2a8d5ac23_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 180KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yuwwldey
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ercdoalc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ercdoalc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE