ddcf53eb6f0b102e0836f80ff016b5da_JaffaCakes118 | Triage

Sharing

General

Target

ddcf53eb6f0b102e0836f80ff016b5da_JaffaCakes118
Size

711KB
MD5

ddcf53eb6f0b102e0836f80ff016b5da
SHA1

7043675e3304d7a52b56378c05c058093283864d
SHA256

f575b00c8617ae312ee2e6bb708a588c2e3ebf893ce9f46cb880efbef8679e07
SHA512

25f4807cda37c5baf284f5654c5bd9af3b2b6317b7bc23cf8112e7a018b1f51237fbd6290584087d59c6676672f3882dc4886f58c71a4ed97b02dfd131d19d2b
SSDEEP

12288:XKDolutzs7JQ31F/weUwDTekIrdlo1jUt1/A06xFtXnwcOD+VecpGIa0yVXNK2Og:XWeuvXorzkOfsIYzt3P155ypN1Og

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/NEW_ORDER_ENQUIRY.PDF.exe

Files

ddcf53eb6f0b102e0836f80ff016b5da_JaffaCakes118
.zip
NEW_ORDER_ENQUIRY.PDF.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 840KB - Virtual size: 840KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ