JaffaCakes118_ad45a44ed98b7316912105f0e4c3580e8072d58224914873daf7a9421b1ec4d2

General

Target

JaffaCakes118_ad45a44ed98b7316912105f0e4c3580e8072d58224914873daf7a9421b1ec4d2
Size

441KB
MD5

196b1233d37659275de6165d5a0deaee
SHA1

62feba84b662534a37896b84cf1bd54b382dc9ec
SHA256

ad45a44ed98b7316912105f0e4c3580e8072d58224914873daf7a9421b1ec4d2
SHA512

4dfbca9940b1fb359eaaa3e8637f1f4a0e59e70b781e81d0b908a0d754a6ddbfdcfcbe9c2d95cf8d2319920a0d1299d1545708fb722ecde2482a113a5d4dd7f4
SSDEEP

12288:hIDdRaXoWqwZjL/jXGjOpcjp/sqeL8/0lnxR+XOel:CDdMXorwZnqjj+Uk2Xt

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7667985125f9931cc7f2e150860f9af7395f31d70440c4bf2a1ad2b6cf63c593

JaffaCakes118_ad45a44ed98b7316912105f0e4c3580e8072d58224914873daf7a9421b1ec4d2
.zip

Password: infected
7667985125f9931cc7f2e150860f9af7395f31d70440c4bf2a1ad2b6cf63c593
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 535KB - Virtual size: 535KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ