JaffaCakes118_bd364fb3af74caaf238a09544392c50318876dfb43496b2a81877ebde76b275e

General

Target

JaffaCakes118_bd364fb3af74caaf238a09544392c50318876dfb43496b2a81877ebde76b275e
Size

342KB
MD5

23b45c2e86e7cd98654d3d976299fdf1
SHA1

4c9fc1e8f014e3682b41492b7cd09cafac4a219c
SHA256

bd364fb3af74caaf238a09544392c50318876dfb43496b2a81877ebde76b275e
SHA512

eaa4ef6e9f94e0af73943da4ce17c54fb78a3e852d182dcf05d7c17a2182b85f4f921adc45585c9d3ac2db2f5a96e38c073cf62555736c8981dea7010f11c89b
SSDEEP

6144:L8mWsUpV4IC9XWh8qdbhwDK2MFMSIVDRBTfSrwkpTrQ4:L8mWsQV4l9gLhwDK2MK/V9BT8wAfQ4

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/core/syrupx64.dat

JaffaCakes118_bd364fb3af74caaf238a09544392c50318876dfb43496b2a81877ebde76b275e
.zip

Password: infected
core/cmd.bat
core/license.dat
core/syrupx64.dat
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

BttfjsirzzShnbwayag
DllMain
DxhchdblvOvuEwtugntbu

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ