JaffaCakes118_9a228e0b3c3045347437fea03f4f54029f5ae0d98d48c3e84683a67c4cd36960

General

Target

JaffaCakes118_9a228e0b3c3045347437fea03f4f54029f5ae0d98d48c3e84683a67c4cd36960
Size

317KB
MD5

a7c59c7d37b243df368af892ed26a1d2
SHA1

3c3673dc7e0d0cc00ecc12a1263962304ea7ca68
SHA256

9a228e0b3c3045347437fea03f4f54029f5ae0d98d48c3e84683a67c4cd36960
SHA512

908ebcc98c2e3e6ea49a148a26f1d015d091bf36eace5ec0ca32c43fbb72a583f8c083fe1cc23fc5bfde03d7e0a3b5d72e595646f5ecfca416dc1f072c8d29ab
SSDEEP

6144:nt22OeXKYcUiUlT6plGz11a1MD9DxkhwyCbIhFP0VP:nPxlOplGm1M9DxkhwyNhqVP

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/C64A54B3D28B6E21F228CE31252ED060CBC4DF936EA074BB4926B793DBC97D93

JaffaCakes118_9a228e0b3c3045347437fea03f4f54029f5ae0d98d48c3e84683a67c4cd36960
.zip

Password: infected
C64A54B3D28B6E21F228CE31252ED060CBC4DF936EA074BB4926B793DBC97D93
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ