0c49473432e3800545a49363041df53d_JaffaCakes118 | Triage

Sharing

General

Target

0c49473432e3800545a49363041df53d_JaffaCakes118
Size

410KB
MD5

0c49473432e3800545a49363041df53d
SHA1

7d7de5f47dbfe2e44b34a0ed82c70801d08936b3
SHA256

d2cba7ab64da0759e200d9c82a3ac030b5fed6fc9484eee09a9240815717c940
SHA512

08da1a6d022c5f85bae7979ad7e38ba48a8e873a810add6a91a5c1138da70075a24f2ad6ac3175c170deb4cd876ea1be579dd6a01a646fb24e398025a747c5db
SSDEEP

12288:f6ppcxBu99uLj8TOCsPtGNCZs1h/+3uCcBOb5d:flm99Q+OCeZs1lquCcOd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c49473432e3800545a49363041df53d_JaffaCakes118

Files

0c49473432e3800545a49363041df53d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 410KB - Virtual size: 412KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE