66483dc3eb40ae044b10793c6578d7a8_JaffaCakes118 | Triage

Sharing

General

Target

66483dc3eb40ae044b10793c6578d7a8_JaffaCakes118
Size

431KB
MD5

66483dc3eb40ae044b10793c6578d7a8
SHA1

3dc02b32950b2f476d5002470431428b51406ed7
SHA256

3cb44f58cadfd5d0e5f81a2666d2d43fc5a521fcc388389655aedea3051c7afb
SHA512

1e0cd0f1ec8e68a9b09fda86361be7e7d1157fedd1f6ae3c678149467e82869acb98972da625432f38244a98fae344b67b5d9d8617ab08a123efb2fa2d8e4966
SSDEEP

12288:FnJSo/DeXsS2TPX+ZX4SUBjGSB2YBKiJ9/63ma/1:FnlYsdv+Zo6SB2i7CX1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66483dc3eb40ae044b10793c6578d7a8_JaffaCakes118

Files

66483dc3eb40ae044b10793c6578d7a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 430KB - Virtual size: 432KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE