JaffaCakes118_89a9e3f0f73595cce8c4e0539985e9b0c400f472b7d6662acbe4dba54c88f8f9

General

Target

JaffaCakes118_89a9e3f0f73595cce8c4e0539985e9b0c400f472b7d6662acbe4dba54c88f8f9
Size

701KB
MD5

c53cace91fb501abc9e6986cffda2470
SHA1

372425d0d7102de31bd7454384ff222f5d87a5bb
SHA256

89a9e3f0f73595cce8c4e0539985e9b0c400f472b7d6662acbe4dba54c88f8f9
SHA512

cc724a5921500e9c480ee302cec151805e0f616493cece839aa351d2cd2a66af1c5b1603029af92f684346975eedefe1958bbb0676161dd52c6a565e2bdecc8d
SSDEEP

12288:sZ1NOW5VX3m1+Sx1lDcDIqg2BuUXPV3TU37M9p2L0eLAfyn+P6kBif2dzS0ZeP6w:sVnVHqx/+kMRmor2L0KF+NBiedzSj6w

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3cc61e3b10971812969457d5c2f23ddaffd81ba130c8b0a13614e81988891261

JaffaCakes118_89a9e3f0f73595cce8c4e0539985e9b0c400f472b7d6662acbe4dba54c88f8f9
.zip

Password: infected
3cc61e3b10971812969457d5c2f23ddaffd81ba130c8b0a13614e81988891261
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 916KB - Virtual size: 916KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ