d6bdbd633799083892ae333a5d16f5b7_JaffaCakes118 | Triage

Sharing

General

Target

d6bdbd633799083892ae333a5d16f5b7_JaffaCakes118
Size

176KB
MD5

d6bdbd633799083892ae333a5d16f5b7
SHA1

89ac52b58a6b6cd1d5844833318c27d53a3212fc
SHA256

f84392a6ec9d2451c71475d7d257a0baa3df0613f7c2a8eb5721c5aea4df4c3b
SHA512

ed17906049a910a1e40df36164848a04e79cf51c5f1efeea139e5393d810d752572f54a9a3c1379c258f2fe7f911388622a20a0f46cf0fdd421f81ae594562f8
SSDEEP

3072:wP13b4ooAAA6c9RJoaZoV9456s6jNIzsn1dpTOYYiR6:wPdb4MhwaA1TrYi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6bdbd633799083892ae333a5d16f5b7_JaffaCakes118

Files

d6bdbd633799083892ae333a5d16f5b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE