06fc9d933e7dace350fa4e4f9b79acef_JaffaCakes118 | Triage

Sharing

General

Target

06fc9d933e7dace350fa4e4f9b79acef_JaffaCakes118
Size

1.9MB
MD5

06fc9d933e7dace350fa4e4f9b79acef
SHA1

b112f1022b72e9c065e84da989ae4307caccdac5
SHA256

eef0cbfc0d5831ca1ea715e87b495060e5712577a65c789a002f93f064d1d7d8
SHA512

31d9bc4c000f9174c6b12bd349d62dd5aa14b68ea9eee6b441e38e2ad689c3302e872c30694405545ade4a5952911b5b79eaf6b85bfaab69ffa4073694759e97
SSDEEP

49152:vZqS7csWxKJ8DdA0YbJI/0Pny9sK7rkMjdTIbYeFvhcL:YS7/WxKidco0Pny9sK3peN6L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Taiqiu.exe

Files

06fc9d933e7dace350fa4e4f9b79acef_JaffaCakes118
.zip
QQ.url
Taiqiu.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 270KB - Virtual size: 612KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 505KB - Virtual size: 510KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

windows
Size: 1.2MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
readme.txt
superlucy.url
װ˵.txt
װ.bat