f176a160ef615d6a7b2fd43bd4394107_JaffaCakes118 | Triage

Sharing

General

Target

f176a160ef615d6a7b2fd43bd4394107_JaffaCakes118
Size

105KB
MD5

f176a160ef615d6a7b2fd43bd4394107
SHA1

41c25402f03189d08f6a38c3036ee77addc59e02
SHA256

09a86ae227898e5193ff0b6ce5b69a264ae172018b84bda1f7f2b7f178c1d080
SHA512

b957795258af71352dfb2cc32e92723266b367d7b2023de8b6914ad9285695a8666ffb79e2f2d2dcedc780253e332ce3f4bfb14ec578490910a3e8a8e0210dc5
SSDEEP

3072:Mb6aHPq9QsKUBK0GaO4s6/pyu17Ys56zdD8:eaQsKYKLaRs6/Qs0e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f176a160ef615d6a7b2fd43bd4394107_JaffaCakes118

Files

f176a160ef615d6a7b2fd43bd4394107_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: - Virtual size: 892KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 99KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE