fa711223aaef81afc6a1292630536a8f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa711223aaef81afc6a1292630536a8f_JaffaCakes118
Size

571KB
MD5

fa711223aaef81afc6a1292630536a8f
SHA1

706d3cfb4aeabc044808b9a9282dc1e98f6595fb
SHA256

5fdc636ef87352b87d177fba50580c3e263f0ebf986386f4b273b1fa4d02c004
SHA512

30db76631d1f44b645b76e609d0367b1811b5edd33eb57f77e8f57f96b4fdb6fc77f63f1e36aec6e0784081667d03f105d486d680c64653e500ef25fe3c01241
SSDEEP

12288:p0Gjrg5x9LIPCQKwGeCjl4fa2WWSU7uiOmgCUs3rok:2KuLWCQKwGeB7b7uGgY3d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/神播资源助手5.2.exe

Files

fa711223aaef81afc6a1292630536a8f_JaffaCakes118
.rar
使用说明.url
极速软件下载.url
.url
神播资源助手5.2.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

baidu0
Size: - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

baidu1
Size: 566KB - Virtual size: 570KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

baidu2
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE