JaffaCakes118_aef989d19eb5f5d3042ccb78cb984327a90cf1946522c42bd34bed927fe80c0b

General

Target

JaffaCakes118_aef989d19eb5f5d3042ccb78cb984327a90cf1946522c42bd34bed927fe80c0b
Size

389KB
MD5

1e8d8c72c395272f7b968aafd7ef26b7
SHA1

8ffa2fa227821c90c54d44084b13c0d1241be782
SHA256

aef989d19eb5f5d3042ccb78cb984327a90cf1946522c42bd34bed927fe80c0b
SHA512

d92553f001f7f85f6bc145468babb3955dab95b7318f62e3772a9e75f933b41b1232530a7a401acd8a44bd630bdc070127bd3001d758edb3611fc434ad873439
SSDEEP

6144:ixoMz9UaHz4ETSGNOtZ1551T8jhmWCQfCxlwNVl6zgoORZSBs1Acb:ixoMpjHbSGNgro1mWCQ6a3IzgoOrOoT

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/PI2009153.exe

JaffaCakes118_aef989d19eb5f5d3042ccb78cb984327a90cf1946522c42bd34bed927fe80c0b
.zip

Password: infected
PI2009153.7z
.zip
PI2009153.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 429KB - Virtual size: 429KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ