2ec2eda18c8ebb56acaca455c5ab5a51_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ec2eda18c8ebb56acaca455c5ab5a51_JaffaCakes118
Size

217KB
MD5

2ec2eda18c8ebb56acaca455c5ab5a51
SHA1

905fe320d4223ad2615ce8a51494f4c63b7de9ca
SHA256

27712acf8455099d11f2cc382be0140d25e031a7b73548f2ea896fee5edad620
SHA512

be0c529fe03c05367a5f58f1ad6e93069f7f9836cadf8a41a7f3c6c1b656f5b7c542f114b4589c74341b475173f1bfb6ea07c20180025f5a8578ed4a5b036f15
SSDEEP

6144:Ni3TAcHqubwzV4z9FwjOpxELyYELou6xq66OZIvm:lcFwhtaxELye4m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ec2eda18c8ebb56acaca455c5ab5a51_JaffaCakes118

Files

2ec2eda18c8ebb56acaca455c5ab5a51_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Form\Encoding\Decode Data.yth

Exports

Exports

IncrementHeightNew

Sections

.qhma
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vtdnYY
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.awxhs
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lvuFa
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lYNrd
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.NFX
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rvcGbk
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.quWnov
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Tjrpg
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PrYt
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xXlgp
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.WrEjh
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

PDB Paths

Exports

Exports

Sections

.qhma Size: 178KB - Virtual size: 178KB

.vtdnYY Size: 512B - Virtual size: 120B

.awxhs Size: 512B - Virtual size: 60B

.lvuFa Size: 512B - Virtual size: 28B

.lYNrd Size: 512B - Virtual size: 57B

.NFX Size: 512B - Virtual size: 76B

.rvcGbk Size: 512B - Virtual size: 64B

.quWnov Size: 512B - Virtual size: 64B

.Tjrpg Size: 512B - Virtual size: 64B

.PrYt Size: 512B - Virtual size: 64B

.xXlgp Size: 512B - Virtual size: 64B

.WrEjh Size: 22KB - Virtual size: 21KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 2KB

.qhma
Size: 178KB - Virtual size: 178KB

.vtdnYY
Size: 512B - Virtual size: 120B

.awxhs
Size: 512B - Virtual size: 60B

.lvuFa
Size: 512B - Virtual size: 28B

.lYNrd
Size: 512B - Virtual size: 57B

.NFX
Size: 512B - Virtual size: 76B

.rvcGbk
Size: 512B - Virtual size: 64B

.quWnov
Size: 512B - Virtual size: 64B

.Tjrpg
Size: 512B - Virtual size: 64B

.PrYt
Size: 512B - Virtual size: 64B

.xXlgp
Size: 512B - Virtual size: 64B

.WrEjh
Size: 22KB - Virtual size: 21KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 2KB