4c135f7c65c7a92a0116d192857fbb51_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c135f7c65c7a92a0116d192857fbb51_JaffaCakes118
Size

374KB
MD5

4c135f7c65c7a92a0116d192857fbb51
SHA1

1c41494b5e7cb00ae8d00dfb008d034401529c58
SHA256

2a4ab43b4037a7a15c5e34b36d641e2f65e36d0cf3a40b3f01bf4433dd6414a7
SHA512

51c7c7c6f589e8350bd75c833a8cd60d12daaae05948188a853a7db2ec5e593b1f4f36f5a0a809763940ee4c96e53d93c9170547e6f958bfa556797da616df48
SSDEEP

6144:8ZkiXf8CFN4CkdZxknXVM7Wnyxs9c4dxuFaUQo425xlFOO/N:8ZkiXfz4CkdZWnXVuWD9c4dxugFI5/Fx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c135f7c65c7a92a0116d192857fbb51_JaffaCakes118

Files

4c135f7c65c7a92a0116d192857fbb51_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 788KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 360KB - Virtual size: 364KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ