dbf9b2433807ab27c935d01ba914e833_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dbf9b2433807ab27c935d01ba914e833_JaffaCakes118
Size

270KB
MD5

dbf9b2433807ab27c935d01ba914e833
SHA1

bc4e5c9448a67cd59f545e373620844afef73d99
SHA256

6c753916000ee840b6d73813e537a0576b3311a1086037a8be27570b6bd526f4
SHA512

dfeec511ae93c353bfb133c8aae5de4afb1f8cc97acacd18b9014d451ca1ac6fb18a0e22be95515d3e52a99c04c76294990e5295c5de362e54ab4d3b48c543f1
SSDEEP

6144:dn5FntzLgNGyE0N2+20gl+kMVGyHd65r:dnnp80y7NzRgE7Pdq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbf9b2433807ab27c935d01ba914e833_JaffaCakes118

Files

dbf9b2433807ab27c935d01ba914e833_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f3c5da38e687ed8e68cd2b55dbd54f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA

Sections

.nsp0
Size: - Virtual size: 400KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 163KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Np
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE