JaffaCakes118_83b3bd2c3ba61322996e80163634149c6a8ea7f17cbe4e3acbf1e441be3ad6f0

General

Target

JaffaCakes118_83b3bd2c3ba61322996e80163634149c6a8ea7f17cbe4e3acbf1e441be3ad6f0
Size

440KB
MD5

e3686344395b3429782f44133897ffc7
SHA1

81bcd7923e438f18e722e5b8b64dfdb2fe0ec7a8
SHA256

83b3bd2c3ba61322996e80163634149c6a8ea7f17cbe4e3acbf1e441be3ad6f0
SHA512

5eb9784b49945c325b94f7815f769dbedcd7c57cb068becb461bc1649c6f8b72807bea189ae976a0cd2d9bfe9b0571144d0e54e11cf13e8fefc44e724029bab4
SSDEEP

12288:QlvevGPABO/S1pdoXtqN2Hghcp0Xy68RHnn/bDFjqggY:o+GPAmSiw2WcpYyv/bxGq

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cb1b1d99cbf6d7bb1a30ec1c7ee31c36b8e19230751046688ad1a14b2fec4758.exe

JaffaCakes118_83b3bd2c3ba61322996e80163634149c6a8ea7f17cbe4e3acbf1e441be3ad6f0
.zip

Password: infected
cb1b1d99cbf6d7bb1a30ec1c7ee31c36b8e19230751046688ad1a14b2fec4758.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 592KB - Virtual size: 591KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ