JaffaCakes118_6e12f9a1ffdd9f23aec2e9a5c979fa20c7b1b6a37ecbaac6b10c4e4ae412d8d5

General

Target

JaffaCakes118_6e12f9a1ffdd9f23aec2e9a5c979fa20c7b1b6a37ecbaac6b10c4e4ae412d8d5
Size

664KB
MD5

e7afc259e8fbbf30c6124b5c8fb2fc6d
SHA1

b786a13af4ab6f46fffeffc05e6e603b34a324c6
SHA256

6e12f9a1ffdd9f23aec2e9a5c979fa20c7b1b6a37ecbaac6b10c4e4ae412d8d5
SHA512

481f8b3b1973840492b70783494a38b8f062d5b39982926676907ead03203fa6dbdbfc87d5775ab307b41c3a9dfbe2d99e52de1003099ff1affab3a7b56964bd
SSDEEP

12288:6va67xYKjpBg/nAiTp/Yz+XUqFxgZrGaTMfiYWsKXLXUnO7knLTSv:N6/EI+pAigGVahsmzUPLOv

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack003/AWB 456789098765.exe

JaffaCakes118_6e12f9a1ffdd9f23aec2e9a5c979fa20c7b1b6a37ecbaac6b10c4e4ae412d8d5
.zip

Password: infected
6168003b226df2d6eea9f8c53dd32d41693d438b74a0e7f28bfeb1bf46a9e51b
.ace
out.ace
.ace
AWB 456789098765.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ