f80a5996054a10905b85f43449bf8155_JaffaCakes118 | Triage

Sharing

General

Target

f80a5996054a10905b85f43449bf8155_JaffaCakes118
Size

267KB
MD5

f80a5996054a10905b85f43449bf8155
SHA1

d06979da942f58845c9347d0b4dded7b38d74361
SHA256

42df16f7c3dba07fc9f23bef54f6ad16a10eb396a634efa2881b14720a55e442
SHA512

23bea235e3e13d74bd8fbc65ef281257db973ad4d98992538e3847084ade1978832448853a3a22833fae2595042ca5656c130180656edb4880b1e7dc9faf4ef5
SSDEEP

6144:96okFa9VltLheq/ny3GFaKbEIp/6HsLtNI0Qc/UKw/VnbJ6d5fmgzp:9H9VzFeg2M/6H+tNxxcnl6d5fmO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f80a5996054a10905b85f43449bf8155_JaffaCakes118

Files

f80a5996054a10905b85f43449bf8155_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 820KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 266KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE