JaffaCakes118_96f54c33d2a1c8b2626cf4389d06e90989618ac26d5d72bc5d04c1f45bb37dcf

General

Target

JaffaCakes118_96f54c33d2a1c8b2626cf4389d06e90989618ac26d5d72bc5d04c1f45bb37dcf
Size

434KB
MD5

c92ebf6b01c4a1666f32d06bb7244d0c
SHA1

452d2d4de00cebeb567c3fda6b555a73538cf3cf
SHA256

96f54c33d2a1c8b2626cf4389d06e90989618ac26d5d72bc5d04c1f45bb37dcf
SHA512

b98f1cd5b034d3b5c593efffbcc2489f5607b398f36af940ba9c1dbf74d9d6ab53611342840c88e5a6aef89371b3c4dcbe9d459a25513576f6b21c91cced4237
SSDEEP

12288:19+5dcRxLJrr5qc1OpSk1cgimhIBQeCZ9kaGjXTJALP:1FDLpYc1CSkoAIieCWXJALP

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Drawings HQ30-DM140.exe

JaffaCakes118_96f54c33d2a1c8b2626cf4389d06e90989618ac26d5d72bc5d04c1f45bb37dcf
.zip

Password: infected
37b41df4309d7351e2a850b7b113111d
.lzh
Drawings HQ30-DM140.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 762KB - Virtual size: 761KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ