0411b15eabbb416000e00bd964e8d7e0_JaffaCakes118 | Triage

Sharing

General

Target

0411b15eabbb416000e00bd964e8d7e0_JaffaCakes118
Size

1.8MB
MD5

0411b15eabbb416000e00bd964e8d7e0
SHA1

f039f48abbcfc68da66d7024a521c392df1136f9
SHA256

aac36f2fcf4045de2be68840fef307796e6eca6d3bbb361142b884d5149f4567
SHA512

67589e3999d7e3fd94367693ff7c2eb6b03c30f8c94b1e9cfbd2ae9f5ab7e8798b38bb7933d0bd119cdba2d1700277e28053f23dd81fe7d9fd3d6deb3a70d85e
SSDEEP

49152:TFmPI7nY4trwcOUfORqEEAWoihzdZ0ZJ73d8RCuz:geY4traB5fWoihL7Rp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AcroRd32Top.exe

Files

0411b15eabbb416000e00bd964e8d7e0_JaffaCakes118
.zip

Password: infected
AcroRd32Top.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 283KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ