4263edcbea4c17c631acc5d8c0fa464e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4263edcbea4c17c631acc5d8c0fa464e_JaffaCakes118
Size

49KB
MD5

4263edcbea4c17c631acc5d8c0fa464e
SHA1

a03ca29a5b63b9c91129a76d1b665bb8a44c46d5
SHA256

9fc01842ed8efc8160243b7d9b9c73a1513b39c3af1ac1eb6ad16647acd63ad3
SHA512

1d5b433f721e031adce9ca1bdeb826d43c903a319ece6b8fd025379f51d2c84c0aac58dedc069dae587a1063779bcb48b46160a5fc3146f56af6b38c68daf08e
SSDEEP

1536:jNEbsoTb2XDsoHUc+RpOyNMKWDnRXW8Cc6urpzqLgt7Tf:1oTEskLyNMp6cRpzqLg9

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Vagex/Vagex.exe
unpack001/Vagex/updater.exe

Files

4263edcbea4c17c631acc5d8c0fa464e_JaffaCakes118
.zip
Vagex/Vagex.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Vagex/updater.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ