JaffaCakes118_bf0aefdee6705696a7b997ed585a9ef01b5615149bd077a439917c23c9972557

General

Target

JaffaCakes118_bf0aefdee6705696a7b997ed585a9ef01b5615149bd077a439917c23c9972557
Size

388KB
MD5

dc4caa83135a950e8782843dcc0753b8
SHA1

d97413d35eda9bd2c17a7f8895f0d51c765dd898
SHA256

bf0aefdee6705696a7b997ed585a9ef01b5615149bd077a439917c23c9972557
SHA512

aca2c6ca63675423265c13b6ca21d17def82df283c281f8f7d9d96cd85863cf8824ab98db6b20293ac2deb01125db4f5d0acab4307b4d13103db11c8de4d578e
SSDEEP

6144:lVhIW6u9mqynZD7Kht4yxwZhnPy4TpGsq5AnPzjnmE73VMH527MRW/yXldQ6DYaM:ZIW7mBD74VxcNddBAifnm8ExdJqCY

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ccc792e234a29204157d4833f4ca76b93328cdb9cb6f4830d1bd283934d49e45.exe

JaffaCakes118_bf0aefdee6705696a7b997ed585a9ef01b5615149bd077a439917c23c9972557
.zip

Password: infected
ccc792e234a29204157d4833f4ca76b93328cdb9cb6f4830d1bd283934d49e45.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 445KB - Virtual size: 444KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ