JaffaCakes118_b2f687d3d0849e3dc7d1305dfd6e6005 | Triage

Sharing

General

Target

JaffaCakes118_b2f687d3d0849e3dc7d1305dfd6e6005
Size

296KB
MD5

b2f687d3d0849e3dc7d1305dfd6e6005
SHA1

1c4692ed7ab5c32b0c4acecdb82083d342d4388b
SHA256

6951d2de6fa56ec3a53677bbf328415ca22165d66eb06d9a3f51f26a591fefe8
SHA512

47c778ca6302e9d619aaa2f820156c7c0cbafae15ed5482d21df47de1d8d072c6d3badadae91ddd70993591989926195d9848dfcb5523732c94400922c5a0186
SSDEEP

6144:HlJpglrVLxINPZUg29iZFlq4s3BUDkCVUf1isEsL98JXMvbW:FJpgb6Nx09iZFItUDkC54LIcS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_b2f687d3d0849e3dc7d1305dfd6e6005

Files

JaffaCakes118_b2f687d3d0849e3dc7d1305dfd6e6005
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp3
Size: 260KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp4
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE