JaffaCakes118_7e5ba666475aac3d9c115cd4d791172d5189ebe444c8f4bdbe0575e570d45075

General

Target

JaffaCakes118_7e5ba666475aac3d9c115cd4d791172d5189ebe444c8f4bdbe0575e570d45075
Size

951KB
MD5

749397a6c1dad0f8c84af62220568218
SHA1

ebef67733e10bc9079816ed1dd1b4e2f76ec8686
SHA256

7e5ba666475aac3d9c115cd4d791172d5189ebe444c8f4bdbe0575e570d45075
SHA512

6597c6b4b76e5d8b481a1add0ab076fbbc18ceffcdbd76b48f8a8afcbaf17ad25cb1497619729826c470b09f9bc7cc96ce38dc690024623a699f898bef855954
SSDEEP

24576:InMOmE3M/UYu91k+IhTVb/vfJuEDkv/dc/izbKRUT:InMhE8cYi4b/XJBQv/dSyT

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Purchase order O4500016955EqgcN9Xz7YZKqZ2.bin

JaffaCakes118_7e5ba666475aac3d9c115cd4d791172d5189ebe444c8f4bdbe0575e570d45075
.zip

Password: infected
Purchase order O4500016955EqgcN9Xz7YZKqZ2.bin
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

JG{V8.
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ