272003cfbb7fb9d6ffdda6f9d2bc8409_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

272003cfbb7fb9d6ffdda6f9d2bc8409_JaffaCakes118
Size

21KB
MD5

272003cfbb7fb9d6ffdda6f9d2bc8409
SHA1

bcbed88c0df24ef93346c24b0c04df4851d5ff79
SHA256

2e3d8c180d5a13aa9ffcaa81c4228bc5e9d5ae7d47d4450ce32aa1a8d292c110
SHA512

79da62ea400dc3990a2d7a781dfa38d132ada32b67f53600922de9615a6ca581b25ef30dfc1b8ffb52a53c8fea2a5c14e71fe8380e5ff8adc46fc62b1d220366
SSDEEP

384:D2Oe+hBERhDuTASzdXbFfcafqPKfk4VN11c9/ZlC1EF6s1y76ThzJsqGPy:D2X+iyk6bRcHONzAmsQ76TxJtGPy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/pledit.exe

Files

272003cfbb7fb9d6ffdda6f9d2bc8409_JaffaCakes118
.zip
pledit.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE