a20569be10c750f476b712ef237f29b2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a20569be10c750f476b712ef237f29b2_JaffaCakes118
Size

364KB
MD5

a20569be10c750f476b712ef237f29b2
SHA1

defff965dbd75a17dade88011d87a9263cdd74bd
SHA256

6bb1cfec8c690a47582530510a4ef0b76c80447725fb44e1ef677ad39ec5904c
SHA512

c427edf77cdcd9c171915906f4dd895ccbd69e2098e86cb1a0fef0e9bf6a98a226f6c0a1a1d27e375d4ae78ab49c74126aa47cec69f5a4592e14f58090ee30dd
SSDEEP

6144:7vml+o4IZin91zGxQyFVCo+AMREOghO6jtaqHO5Odj9uVVsb/Kz7vQUvfq3tDmrM:yl+HXXzG0oz/Ft25OdiNnQqfwcr+6I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a20569be10c750f476b712ef237f29b2_JaffaCakes118

Files

a20569be10c750f476b712ef237f29b2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 788KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 334KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ORiEN
Size: 50B - Virtual size: 50B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ