279ec69da8e4384a5c39ef6f48017ec6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

279ec69da8e4384a5c39ef6f48017ec6_JaffaCakes118
Size

166KB
MD5

279ec69da8e4384a5c39ef6f48017ec6
SHA1

15c63de239d8cd8d8a84b30fe8e07bd114cb7c94
SHA256

78bb8263a10fade1017c01b7045af55345298ebabb22fdd53e725c4e846c1349
SHA512

eadff9877d59ba4a87fa72376cba5db3850b3c43505a4a78ac106994c610d4da3ef82c610d8ed5bc116e7278c64f3e6e3b190201b168ce3920a109fb4239c914
SSDEEP

3072:5E2rc5LrEuDZQo3kd7h2e70P3m28K5+RcpuMvYgV3qtKXPKXw4:+2QdXDZQl8e70PhH5+RcpZvYgV6tKXPO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
279ec69da8e4384a5c39ef6f48017ec6_JaffaCakes118

Files

279ec69da8e4384a5c39ef6f48017ec6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 165KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE