JaffaCakes118_7e40a14cd98a9dbd7aefe160c621c4cbe8f1cb148df2a07ee189ee7916f2674f

General

Target

JaffaCakes118_7e40a14cd98a9dbd7aefe160c621c4cbe8f1cb148df2a07ee189ee7916f2674f
Size

776KB
MD5

e37859791c3c86dec7b5c7dc5f0097db
SHA1

b4b5d678d47eab00898eaee0d532133c2b8298d4
SHA256

7e40a14cd98a9dbd7aefe160c621c4cbe8f1cb148df2a07ee189ee7916f2674f
SHA512

cd537bcb27ff7b03f8e86ba5df7f5f755d849c5c5c3b8f573815932dd0420e410614e61cf80c1a29ade922baa5ffc55f9bfadc3dbd46292b9bb50fc163c0d4dc
SSDEEP

12288:BaUffVeq3Gu0xZ3A3aWfaFwAJPRzzrsvekSoefTLtCvo/+AR/xfuCmvg:Ba+JWhQqQCBrXoefcHA2RY

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/vbc.bin

JaffaCakes118_7e40a14cd98a9dbd7aefe160c621c4cbe8f1cb148df2a07ee189ee7916f2674f
.zip

Password: infected
vbc.bin
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 888KB - Virtual size: 887KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ