4e07df2c057c3f144decf9af3409c471_JaffaCakes118 | Triage

Sharing

General

Target

4e07df2c057c3f144decf9af3409c471_JaffaCakes118
Size

340KB
MD5

4e07df2c057c3f144decf9af3409c471
SHA1

8de9e8419666b5d1dc979964eaf0eea349a527f5
SHA256

a43336d3a04f84125f7603032b543cdb794fe98f2b3e44dca0c3f241a83abc79
SHA512

7c1b5a85b46f420fe7adb0ac0de67e37032171b6b9003624cf954dc87cc9161aeff9491ba95709e570d5dcbcfd2b17bd8b3592624513f9e71f9ea0c80bd5ad91
SSDEEP

6144:wsojWjOtOXNkh1nEOyW6aHnnGtNPUJk9nKUy//NnFxU/7ReFUD:wseOXSfdZHn6umnKX/VnueFO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Invoice-MAJW-18-06-2020.PDF.exe

Files

4e07df2c057c3f144decf9af3409c471_JaffaCakes118
.gz
Invoice-MAJW-18-06-2020.PDF.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 371KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 129KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ