17e1044af1a77ac6966c44f19d3f1450_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17e1044af1a77ac6966c44f19d3f1450_JaffaCakes118
Size

314KB
MD5

17e1044af1a77ac6966c44f19d3f1450
SHA1

9ee3a38e4162dab671ad281e554bf095f29e36ba
SHA256

dec2d59dd5c9e675c862e78ffe6781bd5c675fe38901208bfcf634e1941ac35f
SHA512

bd1dd0cbe406f0432d434aada1dd7db9da3000272cd542d67fb63cc852355e5c49883d24b312b3ddddab03b96e0482042004dcfe4ddef009ce3be39c667465c6
SSDEEP

6144:GK07m7ZQJLpJ6HWx+12uZ0Hj6s3+DRrLFkIjX+C39wm5PdObuc4Et2D+Y3:E7m1iGHdQM+jBODRNCCtwmeb3vt2Dv3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17e1044af1a77ac6966c44f19d3f1450_JaffaCakes118

Files

17e1044af1a77ac6966c44f19d3f1450_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 313KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE