JaffaCakes118_81b6eb47d0ce09b5fa5b7a6d6e16cdf15de3f58242f7910d1295054473064479

General

Target

JaffaCakes118_81b6eb47d0ce09b5fa5b7a6d6e16cdf15de3f58242f7910d1295054473064479
Size

750KB
MD5

6140ac40fde81c7cac36bb6d5e14debb
SHA1

969211c51538363061b74e9059a1c3ab6469b003
SHA256

81b6eb47d0ce09b5fa5b7a6d6e16cdf15de3f58242f7910d1295054473064479
SHA512

d32fc1d56ee25aa025e22bdbd67d019e55ed8ceab809f3e6050b31b8fd178f30d0c0d917211db29288438eabde986395212f247b10752bd12fe418a5fb46aa1b
SSDEEP

12288:bnJvloaNh9Aq8XwFFyUoYfXWQowDEwUXQTPoSrRAhMBkdl8bB8g8mC8d+T8J8TiY:bnBzNvFEUQQo8EwsQTwSOhMBkdi98g+F

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack003/cópia de pagamento.exe

JaffaCakes118_81b6eb47d0ce09b5fa5b7a6d6e16cdf15de3f58242f7910d1295054473064479
.zip

Password: infected
d00aca7aae889cb8cd4cb94f67fa8e213959b6a4eaa732eb9c30cfccdafe4a62
.iso
out.iso
.iso
cópia de pagamento.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 791KB - Virtual size: 791KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ