0dc02e20aa773f8b11399f32fee15e95_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0dc02e20aa773f8b11399f32fee15e95_JaffaCakes118
Size

350KB
MD5

0dc02e20aa773f8b11399f32fee15e95
SHA1

155ee8f0b42311b97419a851d6fd945bec59fa55
SHA256

90337e1cae40b7e29d16afdd2d61223e3e39d7a9418825467471c10c951aac9c
SHA512

e1c4495baaadf84d2ea26ba2f467de2c63e7406ba8f5108ad4f47f04c7fda15712d7ab944268ba5cb1bc1f9e4e1d07f07f988004ef8eede85042ba350f28028a
SSDEEP

6144:Gg/GR5Pyqtt3rak9FKYce8PgAvA88FelbOEt1W:ZePr99FxXODv80JOEu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dc02e20aa773f8b11399f32fee15e95_JaffaCakes118

Files

0dc02e20aa773f8b11399f32fee15e95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 672KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 349KB - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE