dd8a2dfdc2c0e9dade712aa27cb38431_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd8a2dfdc2c0e9dade712aa27cb38431_JaffaCakes118
Size

288KB
MD5

dd8a2dfdc2c0e9dade712aa27cb38431
SHA1

5a8bddde76218d23c7e5a66a3c2317fffeda54e4
SHA256

c3596cb7b7720c03a9d5c55d03fb3c910d47fcf30eec94b1b8b8911bb0160f9c
SHA512

3442b6200b8b2e9e08f0766e8d73f73745f5cd1ce7c7bd3e2d497aa86496ac4d056d16b4a666a4a432b105d34d339313f9a006716df17481af383361e3fb5a7d
SSDEEP

6144:G76bbPlzlQmCRvkeUAT7wHlFG4qJdoICA4k+zSwvwD8rifdjty:V31lqvke12FG4qfoI/4kov9ifB8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd8a2dfdc2c0e9dade712aa27cb38431_JaffaCakes118

Files

dd8a2dfdc2c0e9dade712aa27cb38431_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 283KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RPCrypt
Size: 183B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp0
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ