4e2f1a5532519f3024a262d10e108848_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e2f1a5532519f3024a262d10e108848_JaffaCakes118
Size

5.0MB
MD5

4e2f1a5532519f3024a262d10e108848
SHA1

4618443f7b8ab5d769e54b61a57debc11b7cf0ee
SHA256

8d86048d9c8de3d025c377aeeea28394840199a9761910b71488ff699d1d59e1
SHA512

cce126096d8eda691626feb4070e463107bae94244453a2bf6c17103ff48b3ab9fee4c07c19ca103cf250f33e08d70a95c0672ed4c9e648f51433a3c04e0e06f
SSDEEP

98304:ODdz9OMNUqR/73LlYWESFThe3z5sop15Z6iqjuzKXID/N3N:Qbz6K/lYLSFTwwrXID19

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7zhoOnqLTjti.exe

Files

4e2f1a5532519f3024a262d10e108848_JaffaCakes118
.zip
7zhoOnqLTjti.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.sVyc
Size: - Virtual size: 920KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.KyJQ
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE