JaffaCakes118_16298f8fe48a3da448dad46d2e6f0ba3b1df3c10f543d6bfae92ef4f20f91df8

General

Target

JaffaCakes118_16298f8fe48a3da448dad46d2e6f0ba3b1df3c10f543d6bfae92ef4f20f91df8
Size

218KB
MD5

ffbb14f5694d5eeb2cd88c9948554bbd
SHA1

758268bd03ba80ce8ed5876b40cfd83b12ccaf9e
SHA256

16298f8fe48a3da448dad46d2e6f0ba3b1df3c10f543d6bfae92ef4f20f91df8
SHA512

1afa3f1f6f57566c131daf50a6034ec4e5801862ba0de798d8b3ff1c580b2980012ad3c6615e4d6d66ecf23c7ad672dea5ea858cc043260c16f75fd6f408adbf
SSDEEP

6144:YyCs5WKwTTINVJB4wPwAg6mDOzNnA/6pmoNqA:QiW3TIpGIf72snAiIZA

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/LPO NO - 19615.bin

JaffaCakes118_16298f8fe48a3da448dad46d2e6f0ba3b1df3c10f543d6bfae92ef4f20f91df8
.zip

Password: infected
LPO NO - 19615.bin
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 250KB - Virtual size: 249KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ