21203e08f4f16e8facfd768fb57958c2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21203e08f4f16e8facfd768fb57958c2_JaffaCakes118
Size

193KB
MD5

21203e08f4f16e8facfd768fb57958c2
SHA1

2fa8e1bdf559fcfb82d8942178fbf1c06f7f0a12
SHA256

f63e43b965ff14fa9b83bcf12bed365f13a52304fa840a20aed1b961d52179ca
SHA512

5e6e95bb439fb00a4b4d4c7dad5a66e800b61476eeadab5456680af5ced02b0486d9685a373bc56c610ca9658f04e3820172cd1cc094d82233fac9e498798ed4
SSDEEP

3072:m81UaPhdsniWr9iIWYduG/IWw0P8UIqQnKylYzoHuR57dCV7ef96IJgmk0hGMDk:maJlM9G5G/C0PvIqQKx0H4SV7sQMgvh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21203e08f4f16e8facfd768fb57958c2_JaffaCakes118

Files

21203e08f4f16e8facfd768fb57958c2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 524KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 192KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE