JaffaCakes118_5d464483c0780fa067121ae4f37c6c76e036739b7205a584dab60635f87d82bd

General

Target

JaffaCakes118_5d464483c0780fa067121ae4f37c6c76e036739b7205a584dab60635f87d82bd
Size

511KB
MD5

a7dbdc00ef156fd07310d83bfe479bd1
SHA1

c4ea27028f6af09b7d3680c44bce0155f42915d1
SHA256

5d464483c0780fa067121ae4f37c6c76e036739b7205a584dab60635f87d82bd
SHA512

17d837197087311fb7af8ca92c3e20c5a315cb3beae27bfaa1d3b1237ac85ccaef51e3e5af72598c4162ab0a09e98fc40dea4482df189483397474eb70bf9ba3
SSDEEP

12288:XHVi6EK+7TdiSTX/j1uAttmsaAcrzx5CCe0yuG:XVv+7xjokmVn6j0y5

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/6e9b59bb1b15031d5c758d3c3043c9fc853bc61c3f51a15eaeea1d06628c532c

JaffaCakes118_5d464483c0780fa067121ae4f37c6c76e036739b7205a584dab60635f87d82bd
.zip

Password: infected
6e9b59bb1b15031d5c758d3c3043c9fc853bc61c3f51a15eaeea1d06628c532c
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ