38c6ac3bd46a8b4546938327883f25f1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38c6ac3bd46a8b4546938327883f25f1_JaffaCakes118
Size

300KB
MD5

38c6ac3bd46a8b4546938327883f25f1
SHA1

e09b5bd218fbab9370c050c6c8dde445ffe494a4
SHA256

5b134b086af1a58afc7ff3b52aa6e5afc6265ec2d73c00bf768a141c25dbce4e
SHA512

c69ab9bfc4c0a24042cfc1f8046353c123470463d27ffd86e629535f8065692796c32074e5849e38108dbf50c54ffab71dd5caf6afb15f0044a614044a1e63dd
SSDEEP

6144:BFEkMTSKRkTn3ki19YrYiA6woVF4fxE37l3RPB4+tYoEafR7TnE38UwpUEV0vC:/EkDKRYnJ19sgMjUEJT4+tYpIpTEXG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/qszl2wnxgq/cheat/Left 4 Dead 2.exe

Files

38c6ac3bd46a8b4546938327883f25f1_JaffaCakes118
.rar
qszl2wnxgq/cheat/Left 4 Dead 2.exe
.exe windows:4 windows x86 arch:x86

2d1b44f1451e10b2f15365b638351c63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaVarMove
__vbaVarVargNofree
__vbaFreeVar
_adj_fdiv_m64
_adj_fprem1
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaObjSet
_adj_fdiv_m16i
_adj_fdivr_m16i
ord599
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
DllFunctionCall
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaStrVarVal
_CIlog
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaI4Var
__vbaStrToAnsi
_CIatan
_allmul
_CItan
_CIexp
__vbaFreeObj

Sections

.text
Size: 404KB - Virtual size: 400KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 308KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
qszl2wnxgq/cheat/image.jpg
.jpg
qszl2wnxgq/cheat/server.cfg
qszl2wnxgq/使用说明.txt
qszl2wnxgq/绿软基地.url
.url