389a6fc09309f78bff7cded49dcd7eba_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

389a6fc09309f78bff7cded49dcd7eba_JaffaCakes118
Size

64KB
MD5

389a6fc09309f78bff7cded49dcd7eba
SHA1

4eb2c001d11fd4280291dcd8f25bd2d74177ca91
SHA256

c5df0849cd6997c8d95104013dce22f5f47a047f9dafd5a365f6975e4f6bf720
SHA512

9011ff9b3b7abc31b1b59733421d9df660f574afe87842177259a5405a9d0208e2bbc4cb3e821eb37584e2b5690d8e98c5569253d10ca20caa322d07b1b8d218
SSDEEP

768:/l7bqrL57T2tVKRQJOOBaABPGoYFzlvOsh:/l7bA5X22QJwAVGo+Og

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
389a6fc09309f78bff7cded49dcd7eba_JaffaCakes118

Files

389a6fc09309f78bff7cded49dcd7eba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE