JaffaCakes118_bee560d0333b22a45f7340b3bb0a57a1e8fef6f2cd638ec60cab6dcd310cb226

General

Target

JaffaCakes118_bee560d0333b22a45f7340b3bb0a57a1e8fef6f2cd638ec60cab6dcd310cb226
Size

968KB
MD5

4c886fde6ff10b8cf006a3f9cde9a639
SHA1

9fb1d0df2f47358db23e096ece136cda32632a03
SHA256

bee560d0333b22a45f7340b3bb0a57a1e8fef6f2cd638ec60cab6dcd310cb226
SHA512

b3f4da2e60673c154b4838c22779489d94fec3f6147abf3fbea03659dbf9d48b32c8cbc018ff87d8d0b0fd17c5fb32a9461842b7e84bf7500302bf934f5e3077
SSDEEP

24576:mVaFALs03HjKFWpA7S5r2x9wPzWIDY/JkF2qq:mVauY02QGG5r2xVA2qq

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9433bad28e2f5b93f26ef692353bf1fbb7f51bddb3e3780446893c10b9f8f6f3

JaffaCakes118_bee560d0333b22a45f7340b3bb0a57a1e8fef6f2cd638ec60cab6dcd310cb226
.zip

Password: infected
9433bad28e2f5b93f26ef692353bf1fbb7f51bddb3e3780446893c10b9f8f6f3
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 991KB - Virtual size: 991KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ