d3fc4dca2b6907fd1ac4b7d2ff6f0e69_JaffaCakes118 | Triage

Sharing

General

Target

d3fc4dca2b6907fd1ac4b7d2ff6f0e69_JaffaCakes118
Size

583KB
MD5

d3fc4dca2b6907fd1ac4b7d2ff6f0e69
SHA1

d12511294f0677bafa9fe194fff8303b5de73ca5
SHA256

ff5b50189fc13c9674b69331515a1b30db95477d1e7d1e479aa75f811a227fbe
SHA512

c7ff0304e8d1a71198d6bd49869cf33b8d2609252fe69d96daecf7abd97fee0a2f176c7152ca79bc1df92051eace9726f77674e77535e1ade7140ac1e1fe5ef7
SSDEEP

12288:khayM0UhYY15vxSjSUNlBVbSWmXvhoGDp5iLLtgGNSCeKKC1NW:bZ0UhYKEWUNlBohzni6GReKKs8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PROOF OF PAYMENT.exe

Files

d3fc4dca2b6907fd1ac4b7d2ff6f0e69_JaffaCakes118
.rar
PROOF OF PAYMENT.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 599KB - Virtual size: 598KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ