c897ee21909bcb1413b6e20477717dbc_JaffaCakes118 | Triage

Sharing

General

Target

c897ee21909bcb1413b6e20477717dbc_JaffaCakes118
Size

666KB
MD5

c897ee21909bcb1413b6e20477717dbc
SHA1

7a53704b3e995d565ceab1054b470ad64e9cc4b0
SHA256

647a52579fa8b279c084cc84507a5d1c68c6b17bcbe97de2b8d4594a3e27c16b
SHA512

edb9d2db6d245aa88fac06404346ae7fe161339a57cdfcf34f38b6813179f6913539a29c1da7d37cc711f9477d81d6e99de0fc00287e4b8477698a1c90b204ab
SSDEEP

12288:jjinLaCsWHJl6Ipy4TTicNcrwiQ39EoJFQ3F7N/6zkwL6mCjuPoiBR:jj6zVTbNVtDQ7N/6zYuwAR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/SOA.exe

Files

c897ee21909bcb1413b6e20477717dbc_JaffaCakes118
.eml
SOA.UUE
.rar
SOA.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 412KB - Virtual size: 411KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
attachment-2
.js
email-html-1.txt