899a135e414d1bdb2d63b6bfb26da29f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

899a135e414d1bdb2d63b6bfb26da29f_JaffaCakes118
Size

272KB
MD5

899a135e414d1bdb2d63b6bfb26da29f
SHA1

2ff3ef6daadf81828d328b37145664e965d28b4d
SHA256

716869d5c1893fdf62a01673c4594eea45de924645de17a550b0d3ec02157c3d
SHA512

6ce1402cbe15b5c900c929a52d4a80b53ad25ff4f5220ac05eaae3facdee64025cc9d0304284fad39a9e4baabeb9ef709af291fa9501fa03e12b0e8d11de2c23
SSDEEP

6144:52xzMi3EX6b/QKGuVAMJZ93sMfhEXjeSCpaOn6QZmgcD:cxzMi06bYKGMAMJZ93siEXjVCpaqZMD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
899a135e414d1bdb2d63b6bfb26da29f_JaffaCakes118

Files

899a135e414d1bdb2d63b6bfb26da29f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 812KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 270KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RPCrypt
Size: 155B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ