604c818fd7bbde06f5141c29172ca535_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

604c818fd7bbde06f5141c29172ca535_JaffaCakes118
Size

400KB
MD5

604c818fd7bbde06f5141c29172ca535
SHA1

aa9d0545e484980a0b175f4ec246f4f09f03a414
SHA256

8727780506475a3f9b4c38c0638c921792ee4fc819a4ea2c471910d9da272a27
SHA512

6426899f87f41d7ac4a8f7fbb14074afbc8ef39e7b0eac018bf72ad77c48478df3f2fe9f2fe1f1e000cd95fc8aee8b5e08f7e82e3f393d2d6ce5d32d244bf31e
SSDEEP

6144:mH3ZLGnD2ygWDpyZmF47eBAksYdQ9BZ4Ns+wc++MYVgQNKmZgGW5CRDKJVDyp13u:sJLYDcWVASvWJ80LUTwc++RVgfOD6p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
604c818fd7bbde06f5141c29172ca535_JaffaCakes118

Files

604c818fd7bbde06f5141c29172ca535_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 399KB - Virtual size: 400KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE