963fafae996101b38f0639ecc3d5ead9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

963fafae996101b38f0639ecc3d5ead9_JaffaCakes118
Size

130KB
MD5

963fafae996101b38f0639ecc3d5ead9
SHA1

f7871298973c086cd6df2b5481e8cd7e0942d134
SHA256

7a9c49e95000fcdeaded598920510dd7be3a495101230a4fff1c0d069f815f3b
SHA512

6d8bdfa02aaa810eaaf96927af8d929185f046408cdb81f3b4ac732d8fa3ddc700b7d590c07339ae54cb0d746c395ecee3f76aebc353cd3a84d0e61b55d8e8f7
SSDEEP

3072:Wk5MIxBcT3ipbfHzk0FrSh7IvDFpsk12OKCMk231O75/:/HMifYx1ILFWuGCikx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
963fafae996101b38f0639ecc3d5ead9_JaffaCakes118

Files

963fafae996101b38f0639ecc3d5ead9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 408KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 129KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE