49e59d9da18a5aaccb9ff11b48ab84bd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49e59d9da18a5aaccb9ff11b48ab84bd_JaffaCakes118
Size

534KB
MD5

49e59d9da18a5aaccb9ff11b48ab84bd
SHA1

cd881f7a40839ef77a0d44db416105e804026907
SHA256

1d9bcdf82dc0abbeb123a136759d234c4b23de96d22f726ec5e9b8b3baf002b0
SHA512

e49dd1a2273f094e969ec2d7af922d2c59df03b5624be9751e875238a7b70d933f24712c1a4e197a2d662a7859d0c77f76dd9725289d85d3a8531a033107a6ff
SSDEEP

12288:xrEehlkxkzAaU+Qj/5FXqGILygm9PxW5b8a6FivTc4h2T9LYrs+YoMT:xrE+kyUaU+QjmuZPsgaEk3MhLY9kT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49e59d9da18a5aaccb9ff11b48ab84bd_JaffaCakes118

Files

49e59d9da18a5aaccb9ff11b48ab84bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 533KB - Virtual size: 536KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE