d37734e6b3b4fea0c868617bee6e62b3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d37734e6b3b4fea0c868617bee6e62b3_JaffaCakes118
Size

676KB
MD5

d37734e6b3b4fea0c868617bee6e62b3
SHA1

9fd1c87afc3cc93a14c09e2036a1b2d45581b6f1
SHA256

b4ae5467a01adc45a26a30c7817ec3f48ffb655407345cd36676b944272564d9
SHA512

228f58cbd430bd62c70dd004b8f0246cce6abcd896b61f33f8275bb00a4e710c41a51c0826197f68dc9a9cff71e5b187d5db422778c02b787d0ca2649a50179e
SSDEEP

12288:5Xs+BkG/E9UuNpIomeDPAB8BMfi+VtbfGUj/2MGtF924:5U9PNaFYPAB8Bki+VZZLM92

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d37734e6b3b4fea0c868617bee6e62b3_JaffaCakes118

Files

d37734e6b3b4fea0c868617bee6e62b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: 460KB - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE