4210ae75402b7eb523aaf4126e78f938_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4210ae75402b7eb523aaf4126e78f938_JaffaCakes118
Size

70KB
MD5

4210ae75402b7eb523aaf4126e78f938
SHA1

6336daa64146b64d5b6a9a896a7cd7b0869778a6
SHA256

091e93dee7e83c346a86a53946d64a8ad35484ce6e56a278e094148eb281d175
SHA512

7756d79f99a29e81ca1ac3f744a223ee14b73fd202dc73f3b233f08760bbcb2e96cdbf6b5bcb451a677e630ebbddac892c874fa60bab77795695a918291bba64
SSDEEP

1536:HOiwwoAXrS/KlLCBfe1VlTMl3KKBxrzzPGXS:D2w2ClLCpwlTMhKShzzmS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Fotos-de-RobertaLima-atualizada-por-favor-divulgue_JPG.cpl

Files

4210ae75402b7eb523aaf4126e78f938_JaffaCakes118
.zip
Fotos-de-RobertaLima-atualizada-por-favor-divulgue_JPG.cpl
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

packerBY
Size: - Virtual size: 194KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bero^fr
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE