6457157a85eb445a7e0898a8f253f0d0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6457157a85eb445a7e0898a8f253f0d0_JaffaCakes118
Size

47KB
MD5

6457157a85eb445a7e0898a8f253f0d0
SHA1

51e95331df76d0a0e785f0a8b7a716e991ef53dd
SHA256

650ba5351feef150ab7272742b4d445b01a2cfc67e4392bdb43f0f093fd0ba01
SHA512

0a38802634326af630c52692b98adc668bf521581dc0ea8b61d98e5b08d90b1a4b92844861612f141b26fc4d54f13604fd686ab609e57ed559d5d154dca07726
SSDEEP

768:UCKMJUEl9XJPZM4R5txNbRrKKRQYe40fJ7aY8XrzEu6B/4gWwbp:UCKMJUEbooPRrKKRQr4w2YkPeCte

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6457157a85eb445a7e0898a8f253f0d0_JaffaCakes118

Files

6457157a85eb445a7e0898a8f253f0d0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE