d6556ecd4416a0656a9d7dfa2c357099_JaffaCakes118 | Triage

Sharing

General

Target

d6556ecd4416a0656a9d7dfa2c357099_JaffaCakes118
Size

761KB
MD5

d6556ecd4416a0656a9d7dfa2c357099
SHA1

ed0cc8ea30a677822716158bc60dc1e8285deb08
SHA256

135307c748f6df6807adc3e83302e583abe225d19260ab1b7b946d8647fe09a6
SHA512

517a34d97be8f349bd440d563f149d42ca650d31557884079472ec7bc4398fcc0dba56c80db8dc8e84e18f1c0b0269b9107137e256ad0c710510133891706333
SSDEEP

12288:djZPuyekGknem5uOJd+1uq0F4Q/xPP3uQbZt3jT2Gg6EyDx2zzW/GE3/qI:d8yebwuOJd+1uq0Fn/xPFcT6JDUzzAV7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PO No. PO MAM 20-21 IMP DOCUMENTS.exe

Files

d6556ecd4416a0656a9d7dfa2c357099_JaffaCakes118
.rar
PO No. PO MAM 20-21 IMP DOCUMENTS.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 979KB - Virtual size: 978KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ