d2e890ee033ad6553f57360c575663bf_JaffaCakes118 | Triage

Sharing

General

Target

d2e890ee033ad6553f57360c575663bf_JaffaCakes118
Size

442KB
MD5

d2e890ee033ad6553f57360c575663bf
SHA1

d9181d32699824fa65d06fb4047d41a0a68aa756
SHA256

29332540c3c2a713bd1462ff5d4f80b679b80f81687c4a2652ccdc25d9dc26f6
SHA512

a7e280084fd46572fdd7ce4b70b2beae6d21001129b4471cef91dd42d02c7dee98a84b0c71af29f03da569f87427450267fe6ef26d64eb3e40b089e2e18db27c
SSDEEP

12288:gxa0B8DiUGQNMjPd0eThiGfTf1ys2m9W6iYpj/P2BD/RezC:ka0BQqmy08gDmk6iY9OB9L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Openstaande factuur.exe

Files

d2e890ee033ad6553f57360c575663bf_JaffaCakes118
.rar
Openstaande factuur.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 533KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ