JaffaCakes118_53ad0f8f3f0f686856a1631a2306cdf452941dc35e5ddd3f79ec819d118a8c8c

General

Target

JaffaCakes118_53ad0f8f3f0f686856a1631a2306cdf452941dc35e5ddd3f79ec819d118a8c8c
Size

565KB
MD5

19148bbd0e5bbf5519f6ea860cb70a84
SHA1

374505ab95de91debbb7712913028cfbee654b45
SHA256

53ad0f8f3f0f686856a1631a2306cdf452941dc35e5ddd3f79ec819d118a8c8c
SHA512

35b6e039e7e6cc690f9abb992d9f3975ba414119eab4aed1e26dbc87484ebde4e923decaaa8012026cea2fd4acc66a36d247052fec2a7630f405ba6c38f263c2
SSDEEP

12288:86yoEJaGpz6gxtg/wLIWsNwJ5xl+weB1Tt+W3YHEgRvoLBWt0I2qR/s:XCM4LGwL3H5xlQB1QIY1vIQt04R/s

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/497b0213c42c51705d4db1a404852919b6c362bc32db6dd0c412bc16e9f5b305

JaffaCakes118_53ad0f8f3f0f686856a1631a2306cdf452941dc35e5ddd3f79ec819d118a8c8c
.zip

Password: infected
497b0213c42c51705d4db1a404852919b6c362bc32db6dd0c412bc16e9f5b305
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 854KB - Virtual size: 853KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ