f1a68e045db072db6cc5ccfca53b5b11_JaffaCakes118 | Triage

Sharing

General

Target

f1a68e045db072db6cc5ccfca53b5b11_JaffaCakes118
Size

606KB
MD5

f1a68e045db072db6cc5ccfca53b5b11
SHA1

acdcecea1cdd7d215fd97b8323715ee0d5365897
SHA256

be95c3b8c727bf769a9ef892c42ff2a3ed9fe764d3297f3214e715e243c69995
SHA512

6e01b7b5d174cbb03a2c0625c29dea0e9a6052c501fb0f8ed2f629ad1875403820917a0e6289cb714df3937a4da268c822514e2b259abfa1ddb6d97765181f73
SSDEEP

12288:yDTR+PauuhVbdDtuki8QlXQze5rQ+ucgOXOXQexnymW3hJ+lcet:ycPauu3httbQlgyS+ucgOXOfnyIlH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BANK INFORMATION.exe

Files

f1a68e045db072db6cc5ccfca53b5b11_JaffaCakes118
.rar
BANK INFORMATION.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 775KB - Virtual size: 774KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ