f9db597a1db62cd2e889a0ab0deaa9fc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9db597a1db62cd2e889a0ab0deaa9fc_JaffaCakes118
Size

5.0MB
MD5

f9db597a1db62cd2e889a0ab0deaa9fc
SHA1

55638c87a58b276b355d0df14b0d96feaa0f8693
SHA256

99435607bed4f8d40d141ae4e757ef0de6304c401d9d2067233b9239ddea84a3
SHA512

cfac39e7322325ea924fc7eac1972fe0d976d3f62d01f5f7bc29d215106fa144055b8ad3ccceb7603d3c18eee63f22ad53f8dd04c9770bd8167be15f2abbc980
SSDEEP

98304:rmmZ7KAYhIWEoeYt69NmK4wLX6C3WkFsuBXN2VNN9Iwkcvvb9F+oc9tvsAxT:aC7/0IWwYtkN6Q6mWqsWXs3PkgV+f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cvery.com/Crack/Keygen.exe

Files

f9db597a1db62cd2e889a0ab0deaa9fc_JaffaCakes118
.rar
cvery.com/Aspose.Word.msi
.msi
cvery.com/Crack/Keygen.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.textxc
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 82B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cvery.com/下载说明.htm
.html .js polyglot
cvery.com/非常世纪资源网.url
.url