JaffaCakes118_df0674d98e3d0cc9287628569c2fd7c67f7675dfc378c0b7cbc7fe6843e7255b

General

Target

JaffaCakes118_df0674d98e3d0cc9287628569c2fd7c67f7675dfc378c0b7cbc7fe6843e7255b
Size

350KB
MD5

4e9a3bebba4774abc050196b853716de
SHA1

5081cd3555d85764674b2c7ea7402885bd55cc61
SHA256

df0674d98e3d0cc9287628569c2fd7c67f7675dfc378c0b7cbc7fe6843e7255b
SHA512

0224b0f337a52ca7f189bf7a68b81994482ba083d6af9847671bc87dc6819527fe9d29930af8432ac8ad31150d1003b564f8667761c7feaccb52e4d157dd7679
SSDEEP

6144:VP6D7lFC0MXxWUSSOEzoDpbEH9tLGu+Ndsz4AdsXqlisug:VyD7lFCp1z4pct6NNazLGsisug

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/8c218c09f446a0db7b5de9bad9aadf285e81b04673a2db6769ccad09e1e6945b

JaffaCakes118_df0674d98e3d0cc9287628569c2fd7c67f7675dfc378c0b7cbc7fe6843e7255b
.zip

Password: infected
8c218c09f446a0db7b5de9bad9aadf285e81b04673a2db6769ccad09e1e6945b
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 388KB - Virtual size: 388KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ