3f7f0a47f5cd2ac7841fb92bc0f3f0bb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f7f0a47f5cd2ac7841fb92bc0f3f0bb_JaffaCakes118
Size

523KB
MD5

3f7f0a47f5cd2ac7841fb92bc0f3f0bb
SHA1

851dda6f54822c45107637945575a48b1a008978
SHA256

6b758c828b331e2fb671e641e1f9e9572b830cd80faca55c8467ca9fbc845b23
SHA512

a4fbbac2822e22a89e81ced88d1e7e30719e6d3840f68ee132b27ae3a887fa40d1f47a0e9da342756c462768de527f773d09b07b744f2b85768702c074f82a34
SSDEEP

12288:K46pAmTr24K6c/dBB5PaeH6BsnGfVilODsIhqwPUl:VzmW4IlNyeazIODs6dM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Swift copy.exe

Files

3f7f0a47f5cd2ac7841fb92bc0f3f0bb_JaffaCakes118
.zip
Swift copy.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 981KB - Virtual size: 980KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ