dd2659a36c20e59036d0fbd2a8c2222a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd2659a36c20e59036d0fbd2a8c2222a_JaffaCakes118
Size

318KB
MD5

dd2659a36c20e59036d0fbd2a8c2222a
SHA1

f49ed7d9f161320f170fb2e25aa9be151c505035
SHA256

8444ec9f8c6be6b1f457fed24650e9c77c56f38a8afbf715d3a5e4cf17786448
SHA512

b2848df189ee2594ade6a4985997966ef099c89719c92deb00e9669f8610c08b870362b4fd52deceadb264a6f390801cba57e0f2e37a5d75154ae962093354cb
SSDEEP

6144:j4y5JGiika/ryvQ0fZADzx3HDBzMc52D7/EUI2e/4P/tT:j4AcN/rahADzZBP52D7MUIX/AtT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd2659a36c20e59036d0fbd2a8c2222a_JaffaCakes118

Files

dd2659a36c20e59036d0fbd2a8c2222a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 317KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE