454c09df11fdd5c7bd977f9e39508085_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

454c09df11fdd5c7bd977f9e39508085_JaffaCakes118
Size

280KB
MD5

454c09df11fdd5c7bd977f9e39508085
SHA1

2d6d7ebd9e829ca6642a5f76d05d3f147ba5e2dc
SHA256

56c4ab7866dcfb3c0926d6a81b0f6db45a794e99159ed29aaf95ac0914b9ff17
SHA512

af083241368aec9d848a7258a3b5667cf3592f45d4de53e40064b7caf7fcb1f1c2fce053f13829bf5f142687810ba666915818ba3a57846337a63a814c7cb53a
SSDEEP

6144:9KJW7F0g2JulsetBVrqxP4No0bOmeHwccMwiN+lhj8:GK0gXCmKgO0bOLTwW+7I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
454c09df11fdd5c7bd977f9e39508085_JaffaCakes118

Files

454c09df11fdd5c7bd977f9e39508085_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 788KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 279KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RPCrypt
Size: 295B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ