78fcbfa4a6114e95b22785d49a9d67ce_JaffaCakes118 | Triage

Sharing

General

Target

78fcbfa4a6114e95b22785d49a9d67ce_JaffaCakes118
Size

308KB
MD5

78fcbfa4a6114e95b22785d49a9d67ce
SHA1

bb649bd98dd5b5ec851de7952b6e12fd15a7458a
SHA256

77f59a61da3dc720f9493da3e05a30413ac25c4b1f9772d7d6ed9e2ad499be2c
SHA512

3096c2dc469abb4ab9cb0502da9dff0bea8071ecd2c06b76461fe7656bbb2dc4072b8b2b49e7209055f3e839e57124e104667dcd99152d17a04284bc99dd9914
SSDEEP

6144:rVGfDIBZIb/yx/CUaHzXbxgB5CYsKkUFSBvjeW/E0NV:wfDIIi+jbKQwk3lq2EsV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/swift.exe

Files

78fcbfa4a6114e95b22785d49a9d67ce_JaffaCakes118
.zip
swift.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 369KB - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ