2f5c66059bf868909b2319a80bafa717_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f5c66059bf868909b2319a80bafa717_JaffaCakes118
Size

315KB
MD5

2f5c66059bf868909b2319a80bafa717
SHA1

71dab97f7f0b3ae632fa6c699517ce7e4583b562
SHA256

ddff0d1deeb87a9169e44a0ff345877e15621cd82cf8aaad310e18031cd1df0e
SHA512

05c8af0a49f738c7ee8ed570b75f1935a6111b3b0f98a83f2e7bbe72f30e013a278b4869f5ba7054a4f4f797c656c1228a5859c1446625622826ef760715f506
SSDEEP

6144:8ZxFKnWy0EadM8GWh054sma7mOEYT5paaC9Cpws6NNyqGiR:YvEWy0EN8GW6vN0XaC90ws69GiR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f5c66059bf868909b2319a80bafa717_JaffaCakes118

Files

2f5c66059bf868909b2319a80bafa717_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.ldtizox
Size: - Virtual size: 820KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edikrlb
Size: 313KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mipdber
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RPCrypt
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE