JaffaCakes118_801ced2d6661e6ad1fe63da93f7a3700c36bd70b47cae2bfaf3c7b67c33513ec

General

Target

JaffaCakes118_801ced2d6661e6ad1fe63da93f7a3700c36bd70b47cae2bfaf3c7b67c33513ec
Size

677KB
MD5

3a76951b1101d262bb1be490038ca759
SHA1

85a698fb1486c3a01ec6ad160b184ff067da518c
SHA256

801ced2d6661e6ad1fe63da93f7a3700c36bd70b47cae2bfaf3c7b67c33513ec
SHA512

82c298ed1b0935e5eccfda94616326c1ac63ec023c29a4c0f2b592ed5ac50d35ebe600efb04b4ad431dd9acfc9fa403222c50bc58831566c806d62273b2e17d8
SSDEEP

12288:pfst8S8m1y4573hDsFjx505kek0Vqffv51mwlbmPJqB0bni2:p0t2m973FsFT05kcU2wlbVqni2

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Estimates (Korea Zinc Co., Ltd. Onsan Refinery) 275-016.exe

JaffaCakes118_801ced2d6661e6ad1fe63da93f7a3700c36bd70b47cae2bfaf3c7b67c33513ec
.zip

Password: infected
15921dcecdfca5c112a8494590c21339
.cab
Estimates (Korea Zinc Co., Ltd. Onsan Refinery) 275-016.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 833KB - Virtual size: 833KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ