d88cf7ec9a44956a70af90e875095576_JaffaCakes118 | Triage

Sharing

General

Target

d88cf7ec9a44956a70af90e875095576_JaffaCakes118
Size

257KB
MD5

d88cf7ec9a44956a70af90e875095576
SHA1

42cfd1f55bf7b34dc4f6ae81b38855f36a1d2e78
SHA256

acf80d6c4365858bc31ac402e1f5df1b70df681eeb313e26381880886906629a
SHA512

6335b4edd319e7d54b76a371acd26ecd4dc8c710e50b1e874beb9d664a7f0c58ce8598348f3f7b4dbdd86a94d01fab566c81df54ed1f9ed72f063d84e93cd8cf
SSDEEP

6144:ao4KKD5QSaTAJlV/4PlCcUCtK7iBJsgJIgJdoTAs9QOVrJW/N1QfapSSA:aoGD5QSaUJlFclC9CY77gJISdov9QIYE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/14062016000020.scr

Files

d88cf7ec9a44956a70af90e875095576_JaffaCakes118
.ace
out.ace
.ace
14062016000020.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 310KB - Virtual size: 310KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ