16c670938d103b931e421240f745c3d8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16c670938d103b931e421240f745c3d8_JaffaCakes118
Size

426KB
MD5

16c670938d103b931e421240f745c3d8
SHA1

2d178cc639580de1b361774663a7c0dd1f4201f2
SHA256

6c05f44aabe5baa0fe633c4e874f2cc61206c3366006e02de7e9dc4a579a756d
SHA512

66d4c5fbf296a356705411feda87817bdea09cd2da6ccb7e17969e1d75a2b83d1a1e145826e1fc5665c986b5586e4d7d93f46a96af148cef12c2361fb03fafe0
SSDEEP

12288:v/FLfoVsH4eDhVH5SYFoAkrN7b5v3LjIGZ2:v/FDoVsH1Vx5SYa5PPxZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16c670938d103b931e421240f745c3d8_JaffaCakes118

Files

16c670938d103b931e421240f745c3d8_JaffaCakes118
.exe windows:0 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 876KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 413KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

hhxx
Size: 100B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE