JaffaCakes118_6281ed2372cd4dbbcd8f3f7b6df0eba31365bd17552b37b76e4d843bb2176258

General

Target

JaffaCakes118_6281ed2372cd4dbbcd8f3f7b6df0eba31365bd17552b37b76e4d843bb2176258
Size

1.1MB
MD5

1d9fb94e81473a27d654d308574416e0
SHA1

2ff5db8d3599e11b3b8424d18376c2102270ab8e
SHA256

6281ed2372cd4dbbcd8f3f7b6df0eba31365bd17552b37b76e4d843bb2176258
SHA512

84cabb147a6c94b1dbf64e0f0eb153d5e38e7d5203d7ab0d31b42416fed0ab1314723eeb791eb547722bc5d4f29c22687efb016e40ddb2f2238efd3c4641a990
SSDEEP

24576:ArOjQ3eKu3P184D/0aMra3pevR0NhiNIuDnNOD+4IdLXtB6wlMYGkyNNT:Ayc3eDP+paMOkDNZDnNOqLXv/lMhT

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/93aacab7e09044795808ad1a0256c015271653ab0fe9d62785800c0f19ef1ad8

JaffaCakes118_6281ed2372cd4dbbcd8f3f7b6df0eba31365bd17552b37b76e4d843bb2176258
.zip

Password: infected
93aacab7e09044795808ad1a0256c015271653ab0fe9d62785800c0f19ef1ad8
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ