fb2f578dd30c5ab8cddb964ba9423a48_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb2f578dd30c5ab8cddb964ba9423a48_JaffaCakes118
Size

284KB
MD5

fb2f578dd30c5ab8cddb964ba9423a48
SHA1

24661c5309df19d6931faede1081758377c5c02d
SHA256

8b0c3ef09e7580d239129479e3361240f62d7901440e9676ef0243736570754e
SHA512

7fc6b7ed302bbba4b9e06276389940a9806f091080591526187f1262aa295f5f5ac55e636e13542c02d8530fbfb98030f7447cb8a212ed3e1d1f587a1e962262
SSDEEP

6144:kGQ99HNvHrAzaZ7hNvR77HDN/BPyXO6qGNSadnFkJQiuWx+tp8b/74:3Q99HJAzaBx5/IXI2nFkg5pi/s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb2f578dd30c5ab8cddb964ba9423a48_JaffaCakes118

Files

fb2f578dd30c5ab8cddb964ba9423a48_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 832KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 277KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE