372574912ede630595c8dc4da9843df1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

372574912ede630595c8dc4da9843df1_JaffaCakes118
Size

243KB
MD5

372574912ede630595c8dc4da9843df1
SHA1

d9bb53214c59314a2570ae3409cb7ccdda55a6fd
SHA256

616dcc1b9ae9838b26ec2edbad17bd4175dfd1b90d0f7a729bd02bc8ff065e01
SHA512

165d432e3c9af682b6cd0f248374169430ece9d1a07b5854a6c2ed4aff69331eab5c231e0da6f5375958ce006c0e6e05627e7beaed83c9d8fcb598e6326b8363
SSDEEP

6144:acAeYGq4em50H2+ae0zGdWN0lBZkh8xfOPtqkYYqcJh9Q:aQ1oe6d20ju8x2PzYYqqQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
372574912ede630595c8dc4da9843df1_JaffaCakes118

Files

372574912ede630595c8dc4da9843df1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 239KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ