86a49fd1e81cde5062533aef31d7c7e0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86a49fd1e81cde5062533aef31d7c7e0_JaffaCakes118
Size

426KB
MD5

86a49fd1e81cde5062533aef31d7c7e0
SHA1

c6586a0655c71363503ed9b6142fdde5db6ec3da
SHA256

f806975fe54f8c69d5a4c02e9b0939060ad699bf8008e2802c4ed8b97c4ed5d1
SHA512

fb56fe8f5c82365b54573cff36ee8c8b2c4d2014e07e197ee3bf65c1dc9daea009548d1c6667adf16fa586fae22775450019954077d227108ad01af3ee454876
SSDEEP

12288:gqEaxp8zSbNSJpjx0D7lS5prCbKsKgoju8JSOC:gqHqMNyb47uRCbKsKBJSb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86a49fd1e81cde5062533aef31d7c7e0_JaffaCakes118

Files

86a49fd1e81cde5062533aef31d7c7e0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 426KB - Virtual size: 428KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE