JaffaCakes118_e5142b32498bf308fe74c79a3c5b308f1eff5319da59a134bd55fcb0644785fe

General

Target

JaffaCakes118_e5142b32498bf308fe74c79a3c5b308f1eff5319da59a134bd55fcb0644785fe
Size

50KB
MD5

068d063826f24d0454f5a8aaa995e67d
SHA1

686ee0c1bcedb312d25eef5118f3acc19f627793
SHA256

e5142b32498bf308fe74c79a3c5b308f1eff5319da59a134bd55fcb0644785fe
SHA512

a88f70e0586686366e4f34294fad993b3e6cf2469b71319668d6da13b7e04026c4184c496a0bd7047c7f490c3be07c3029b3882e96628f8f3278cb9ab80ec436
SSDEEP

1536:idNjM0BrzOCfUWFOsLnzMvo9mExubyCW2TuQndc:N0NzOCfUiOsLnzMvWxu+5guz

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/shellcode.exe

JaffaCakes118_e5142b32498bf308fe74c79a3c5b308f1eff5319da59a134bd55fcb0644785fe
.zip

Password: infected
shellcode.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

foo
Size: 1024KB - Virtual size: 1024KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE