JaffaCakes118_adebfbc5cf6271c6531008b7c566ba35330c9e3c6a7c2f972491b2819c6e2e3d

General

Target

JaffaCakes118_adebfbc5cf6271c6531008b7c566ba35330c9e3c6a7c2f972491b2819c6e2e3d
Size

692KB
MD5

d204458d2a004188ac4fc34579f5009a
SHA1

9f2131583b983bdeb1fa9b86c00101994cb4a1cb
SHA256

adebfbc5cf6271c6531008b7c566ba35330c9e3c6a7c2f972491b2819c6e2e3d
SHA512

4a01b7db9de4d2051fc4fbd2746f24686e6eca350bec7ad575d6eb56535df4dbac7ebf0150dd7f1e6e59408db75563b34214d672a44d54ec5be232260444ea39
SSDEEP

12288:1Ust4dv0C2Ua+wBvs4qn+jNb12b6xIjPM3asdkz5s4KC9kosEsb4/:m0sn+lIKCPMBdkzW4KpbVb4/

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f948dc3ae5917be2f82b9b5976c2caa58aabff47764221082f0ff26db0e74f2a

JaffaCakes118_adebfbc5cf6271c6531008b7c566ba35330c9e3c6a7c2f972491b2819c6e2e3d
.7z

Password: infected
f948dc3ae5917be2f82b9b5976c2caa58aabff47764221082f0ff26db0e74f2a
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 359KB - Virtual size: 792KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jifen
Size: 322KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE