245cf80ec41439b14c9261c46cb373a0_JaffaCakes118 | Triage

Sharing

General

Target

245cf80ec41439b14c9261c46cb373a0_JaffaCakes118
Size

386KB
MD5

245cf80ec41439b14c9261c46cb373a0
SHA1

0630b6eca698f1281191d1ab79d315c8997238b9
SHA256

d1b5b6b95470483ba092a9c9d5cb15819c5fd63d409d2f0e9724fff243719ed9
SHA512

a7e48b73abaceb295506417cc7831926d3460af1200e151742b3a594812be84a614aa4de8da71c621605778fd174da562c5d80e31e536052a8c20320c70e02a5
SSDEEP

12288:FdN8wEzB/xONd0kGO5aZZcDwDTBItr8Qf4dC:x8wMgdkTswfBIt34w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
245cf80ec41439b14c9261c46cb373a0_JaffaCakes118

Files

245cf80ec41439b14c9261c46cb373a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.70pike
Size: 2KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsp1
Size: 286KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 958.0MB

.data
Size: 95KB - Virtual size: 96KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE