JaffaCakes118_ca3bb8d7b3a66189add3fdd0dac2403783af3e4d36a117aad422647e3d7223d9

General

Target

JaffaCakes118_ca3bb8d7b3a66189add3fdd0dac2403783af3e4d36a117aad422647e3d7223d9
Size

648KB
MD5

2cd22f125796a4991b1619f2e1197b27
SHA1

daf86732ca86a897f8cb65b434f51b389bf87618
SHA256

ca3bb8d7b3a66189add3fdd0dac2403783af3e4d36a117aad422647e3d7223d9
SHA512

46338acf9203ca6d81214b988b5e28ea6fccf4a73f02c669cd76822b7d8ef674c614df5cff549a3737d40d5bbcab416868eccd2e1ed930ade11d9644e6a7b390
SSDEEP

12288:fwtjTwt5Mq3lKux1GOoyFBSDmGSgj0HggNBgSzy4cf7hx3WUhr2rOlSsTSBMpHbN:fwhMMqTXoJDmGJQHggDgSzgf7hhWiqiX

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a1477a2f05552a89c24ca286f54cdded4b87694302d3d8af2f5cf9dbd7d3ae49

JaffaCakes118_ca3bb8d7b3a66189add3fdd0dac2403783af3e4d36a117aad422647e3d7223d9
.zip

Password: malware
a1477a2f05552a89c24ca286f54cdded4b87694302d3d8af2f5cf9dbd7d3ae49
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ