JaffaCakes118_6f832e96aa50ce6c2ca898a64c4ca8cf30325686011e455692789166428aca62

General

Target

JaffaCakes118_6f832e96aa50ce6c2ca898a64c4ca8cf30325686011e455692789166428aca62
Size

340KB
MD5

1b198d28334f5e90102772104a3f9357
SHA1

cb49ce91ded970109ca5a6c14a4058438d58f126
SHA256

6f832e96aa50ce6c2ca898a64c4ca8cf30325686011e455692789166428aca62
SHA512

5079790993675b74523a230400177c7f4314388fbfce1cfa949e1effcc7a7342516bbb559a7053d381b493c810f69f3d36f4b19a576df0af76298a66e57d3410
SSDEEP

6144:8sDGqBfLxjA3qZUevkBwf8fl4FRtjucXvMqfz+rcKeWTdKcMSX2Z:PflxcSoBwEgRxu2kqfz+h/UoS

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/SwiftGPGN.scan.pdf..exe

JaffaCakes118_6f832e96aa50ce6c2ca898a64c4ca8cf30325686011e455692789166428aca62
.zip

Password: infected
SwiftGPGN.scan.pdf.rar
.rar
SwiftGPGN.scan.pdf..exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 455KB - Virtual size: 454KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ