fcd3269ebd515cd92d4b6259447208cc_JaffaCakes118 | Triage

Sharing

General

Target

fcd3269ebd515cd92d4b6259447208cc_JaffaCakes118
Size

452KB
MD5

fcd3269ebd515cd92d4b6259447208cc
SHA1

ba8771420594947049eeb6ab88cc62025032f808
SHA256

c2c2b095360961b24b797f890e9d9e01e47151cce094b094179cb09472f74d12
SHA512

7b43bd6d213b72e36958e89e6a7422e8064a2cfb7e9b657244956085c9d54fc11e910c70d262ff468f0a18e5880e236818303b778041445d3cbcfbacf3c0fec0
SSDEEP

12288:Kitmw/wRC7GGQteXgaB5AJtfugcIkLu/ZlWCGoksfQ+mh:Ku0RCytPDzLlWPyVmh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SANTSSWK20100001 S-JF 2000133.exe

Files

fcd3269ebd515cd92d4b6259447208cc_JaffaCakes118
.rar
SANTSSWK20100001 S-JF 2000133.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ