JaffaCakes118_0863f9c1ae06a685b26bdb3b96a06615fa75b91f698fa5927bf1cb2234d9b580

General

Target

JaffaCakes118_0863f9c1ae06a685b26bdb3b96a06615fa75b91f698fa5927bf1cb2234d9b580
Size

382KB
MD5

e3983a1c849e97587bacbf990ff4e426
SHA1

305644db8da0d2bf38e5ebd7933db3a39369d44f
SHA256

0863f9c1ae06a685b26bdb3b96a06615fa75b91f698fa5927bf1cb2234d9b580
SHA512

8803b31a3d72e406ca8ed9fb800a2252896945fab4bd33e4360a9ea37336990b59087e6dc302a71f893f6c7adcd98be6a39b45b492f7c809d47fdb7137fd06cc
SSDEEP

6144:fOfzMdUik1UuZrPmI/jPsuCe2e7Bxq6G7dOwxZWIxjCQ+vOYAXAm:cDik1fZrHLsw7BIHZxjkbAwm

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/pigeon64.dat

JaffaCakes118_0863f9c1ae06a685b26bdb3b96a06615fa75b91f698fa5927bf1cb2234d9b580
.zip
core.bat
license.dat
pigeon64.dat
.dll windows:6 windows x64 arch:x64

61718d212d8522be3c14ed0f3f01f07d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

GetTickCount
WaitForSingleObject
DeleteCriticalSection
EnterCriticalSection
GetLastError
TlsGetValue

Exports

Exports

DllMain
LnufopniaodejGauxaramafp
TrsykatkuqzgiThpurekdujozer

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 746B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE