JaffaCakes118_f4fa7d88a2473c12fdb3d13833346d3fcd831a558619b24072518bdf4f2a3761

General

Target

JaffaCakes118_f4fa7d88a2473c12fdb3d13833346d3fcd831a558619b24072518bdf4f2a3761
Size

361KB
MD5

71e638c83d24d846f012447114fdc36e
SHA1

94270f82ee80842df474fff85d3926d681f3893e
SHA256

f4fa7d88a2473c12fdb3d13833346d3fcd831a558619b24072518bdf4f2a3761
SHA512

e08b8f864d7e37be3389d879aea69c9ca9356df04cc8963ed75b77e832e396cbe868545b2f8b2ee0ba8d2050f2d2718b8398b54f9abd7701d853ae0bd2eb0a4e
SSDEEP

6144:JJJK+f5piqqnpQmc+7EN3CEgkVWUSzhuXvgXl7uw0UIhTXQ4lzc4zw7oOTz:JJs+hpXqaT+o1jVWUSdufoUwsxA4lzHw

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/741815376052dfd9c8dda9031633196530d185b85f9820e1d4a2f0ffaa149b67

JaffaCakes118_f4fa7d88a2473c12fdb3d13833346d3fcd831a558619b24072518bdf4f2a3761
.zip

Password: infected
741815376052dfd9c8dda9031633196530d185b85f9820e1d4a2f0ffaa149b67
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 430KB - Virtual size: 430KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ