dffb2cc952a311980e2d312531bba7d5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dffb2cc952a311980e2d312531bba7d5_JaffaCakes118
Size

870KB
MD5

dffb2cc952a311980e2d312531bba7d5
SHA1

87a4d770e705b91ac556ff607f8ad2bd7d705663
SHA256

2d6eb54ddb0451fc966ca861fa3720124aa3c4a1d58e4f657611f263c52d1b82
SHA512

1f848d4fe2165e74123a2919fec77e314b4c1947276ddd308937d548cb1d69c86bfa85ade78a9465ec18901b6ff2ee8b7f548e76ccb8a4e16c9a90af4026329f
SSDEEP

12288:FxcdRothbvp+S1YSDDCSplnjWgtUanpVkG7LR2ym:FycnbvNuYDtnjWokYR2y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/PO57891255564GYH11192643-2152021,pdf.exe

Files

dffb2cc952a311980e2d312531bba7d5_JaffaCakes118
.iso
out.iso
.iso
PO57891255564GYH11192643-2152021,pdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 581KB - Virtual size: 581KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ