JaffaCakes118_8b2666d4856f98b157dd705cc3a13f1c9203e432d841251528d31460968c89e8

General

Target

JaffaCakes118_8b2666d4856f98b157dd705cc3a13f1c9203e432d841251528d31460968c89e8
Size

1.4MB
MD5

3702ff38924ec1cf5689b184d9988984
SHA1

c663d2c8351388ebd9195731b419f4c655739a2d
SHA256

8b2666d4856f98b157dd705cc3a13f1c9203e432d841251528d31460968c89e8
SHA512

15c4729e6431c22e0f022d6b5480aa5558ab7e0f6994d7d29704590ad10a8e92a2d79ecd0eb62df669c65e48a87d4ca9c36242a341d2c9f58ae87aff59ba58b5
SSDEEP

24576:7M6lNwTPvZHvkqfLLy9dJ+G9tRuJ77ftm1aBCY+YOTo5fW/lS3VW9rls3:QuN2sky9dYfftm1aYZtTo5fUlYVW963

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/MUrCVpcnKl3TR9r.exe

JaffaCakes118_8b2666d4856f98b157dd705cc3a13f1c9203e432d841251528d31460968c89e8
.zip

Password: infected
87570afcea162e43bd572e1d1620735456bbab41cd4f1679c53756c51a2ab598
.7z
MUrCVpcnKl3TR9r.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 766KB - Virtual size: 765KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 948KB - Virtual size: 948KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ