aca77380e2b7063a61ec7e3b8d51555b_JaffaCakes118 | Triage

Sharing

General

Target

aca77380e2b7063a61ec7e3b8d51555b_JaffaCakes118
Size

532KB
MD5

aca77380e2b7063a61ec7e3b8d51555b
SHA1

5b52882f4c6887e6daaf7b8b0a69751cc9d246f1
SHA256

3be1a1943a0970664685bd6e6211b188cd55d494b536266cc12a9796776b3c51
SHA512

f47ce230f9ce063d61c43f93b4e38210d638451c21eb9b2ea5b0690f850d10bb5451648450de27da2c70cd89a2655177561b80ca10bf412c7c7abecd32a9f187
SSDEEP

12288:MOpNXkUUB1ZyCRvx+OwStQMGZpjI11nrTXNfFvj2:JNW1IIx+OnQMKa1pHXNfFb2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CV_pdf.exe

Files

aca77380e2b7063a61ec7e3b8d51555b_JaffaCakes118
.rar
CV_pdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ