f093c89ea6cd914c7b83ef9a4b8d1d47_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f093c89ea6cd914c7b83ef9a4b8d1d47_JaffaCakes118
Size

361KB
MD5

f093c89ea6cd914c7b83ef9a4b8d1d47
SHA1

a128c2a8293ab97065361edfd7e35fbf9d13cafb
SHA256

c2c2dcfe027d2501cab73c145806d39c298ffd43fa196319364d9f84d3bf2190
SHA512

cee4843fb3c026f4d3bf0bd3f905e13bdb1563a8e8914a63f716db0edb61d532836890451afc96490a0f408515b59155c7252eb6a63d4b2d048913399bbc3641
SSDEEP

6144:pguqVHhJOtp4QRhcgBWEjbpygBUTjpkUlWJAPI98o9knlj+Qo+zgOnyBukwW:yvhob4hQcgB7UlW2I98Blj+QVzJvk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/COSCOSH SHANGHAI SHIP MANAGEMENT CO LTD.exe

Files

f093c89ea6cd914c7b83ef9a4b8d1d47_JaffaCakes118
.zip
COSCOSH SHANGHAI SHIP MANAGEMENT CO LTD.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 377KB - Virtual size: 377KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ