7d590bb96f0a69e019e81da4fed1abcd_JaffaCakes118 | Triage

Sharing

General

Target

7d590bb96f0a69e019e81da4fed1abcd_JaffaCakes118
Size

308KB
MD5

7d590bb96f0a69e019e81da4fed1abcd
SHA1

e847d18b86d340247ac540d4e2986bcdbfaa23d6
SHA256

1fd84ad46bb9e2e2185c09410bdbb5f364e756984bd619d4e81ef0dcf24f0b8f
SHA512

1ed5d4cc225947f1c97353d371a15168914fdd7ef6c8e5bdcbc7a9939901501b8b310d444acc4d67c0a9bba0fb879563aba89d80eb3b112560bfeb56668e721a
SSDEEP

6144:y/1zrHt3faDbtWa6EWyorG3MLREtTO7znrw3j0fp7Kb:S9Ht3yDvTiK3mEUrw3jkp7Kb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/Swift_QTYD21_of 2020 - 180 - ASIA CITRA PRATAMA - AIRO 24-320 [EN](1).exe

Files

7d590bb96f0a69e019e81da4fed1abcd_JaffaCakes118
.zip
Swift_QTYD21_of 2020 - 180 - ASIA CITRA PRATAMA - AIRO 24-320 [EN](1).exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 393KB - Virtual size: 393KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ