6a0a210a07cf865a5bfde02dee2df11d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a0a210a07cf865a5bfde02dee2df11d_JaffaCakes118
Size

283KB
MD5

6a0a210a07cf865a5bfde02dee2df11d
SHA1

9d0dcc1cab090c72fa9f3533a2a74bbf717514cd
SHA256

2d44f78843cfd6389a7c810b5ee49bc0cec2c4d941ba07508e2c206c99c42a53
SHA512

bd52e923035887f483bf8aa5a920b161c5290a37829cfe1c85e30b749c7be178b4926399130f0b00d09d46f7c2c4ddafaf0e0c99155714d53ff7b4a80964c812
SSDEEP

6144:O6Cenx5PX/CcW0efphJAXPyqSc7KRuB2mWb3RvJx2Rfh/ekXN:/CwD/Cffph2XAsKR1mGvopV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a0a210a07cf865a5bfde02dee2df11d_JaffaCakes118

Files

6a0a210a07cf865a5bfde02dee2df11d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 278KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RPCrypt
Size: 344B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp0
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ