34b0f9a00ec6a1ecf03618ce37f67748_JaffaCakes118 | Triage

Sharing

General

Target

34b0f9a00ec6a1ecf03618ce37f67748_JaffaCakes118
Size

1.1MB
MD5

34b0f9a00ec6a1ecf03618ce37f67748
SHA1

d2164c33fc03ffc9e7289834a0f20af2fb84918b
SHA256

0602097d91340c404c897237c58f220b8b431003ab9b2c37f3b9232e5329f8c4
SHA512

fcc3f3dd6c22ca7d3eae4ff21f7a6abd8e21d839a5a77dc93af7baa9b00e8be6cf44b9df6ec6d378e11c8dfbae56b4366612f0429edac9785524fd56db1b44d2
SSDEEP

24576:C/XoeFt83/1y9cxY3Vr9S8TI4McGccpccUccL7cc2ccOcc9cc4AcHc3+ck1R3o6P:QYmt8NquYJ9S8TIvcGccpccUccL7cc2N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34b0f9a00ec6a1ecf03618ce37f67748_JaffaCakes118

Files

34b0f9a00ec6a1ecf03618ce37f67748_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\work\haiyan\download_system_proj\branches\GameDownloaderOld_Proj_bind\NewDownload\bin\MiniGameDL.pdb

Sections

.text
Size: 756KB - Virtual size: 752KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 13B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qnk
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE