c813b9a6248ac89c0cae88480bc2c200_JaffaCakes118 | Triage

Sharing

General

Target

c813b9a6248ac89c0cae88480bc2c200_JaffaCakes118
Size

773KB
MD5

c813b9a6248ac89c0cae88480bc2c200
SHA1

78c6c63d09296d23156c1778a1fbfdf3e2b70450
SHA256

f5a0d64c5abea4b018d6e7063cd865ac1b5bfbcf933d0a00ff1f9526c273ebae
SHA512

a46b8f344e04dbd92f22b00ae9803ef5f411853fb6630aabcbfcbd98fff78973e3ddfeede2f4a5bb3f36fca3b87a2c0598007ae9c113f1506bfbaf5a52e47b00
SSDEEP

12288:AVziVuTB7/hPzX7WoniOY1DU+NNVTBwHdbJNOZI8eOXOfz49pEtHc9423:AYAFlzX7iOz0dBwHdbJNOheO+r4wJON3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/J20012045.exe

Files

c813b9a6248ac89c0cae88480bc2c200_JaffaCakes118
.eml
- http://www.nbjunda.com/
J20012045_xlsx.gz
.rar
J20012045.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 609KB - Virtual size: 609KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-1.txt
.html