4d5d3c46ef9d66282f5e8345fdb1333f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d5d3c46ef9d66282f5e8345fdb1333f_JaffaCakes118
Size

19KB
MD5

4d5d3c46ef9d66282f5e8345fdb1333f
SHA1

d78e2df2afafe24cef227ac2339429f7c4f911da
SHA256

c687d949bbf6b2f5b4c05ff2ff36ae9b844476bd326394c16127c3aa4fd6c3e8
SHA512

70f259d97ba073226bf085acb07512d36bc7ea9fc7d680bf9c85cc584cd87b1a3ed2165b339cee9c986815c0455e80c2b6c5c7ce5a60bcd255d6add8f7b50996
SSDEEP

384:K4kKbjWwZbkdqhOruxuxwdsiz5tXfGmu2EX5xr9zcPrnr5:KaawpkshAuxu6s0pGh2EBzcPLr5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Wis文件离散数据提取.exe

Files

4d5d3c46ef9d66282f5e8345fdb1333f_JaffaCakes118
.rar
9553绿色软件站.htm
.html
Wis文件离散数据提取.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\科研项目\Gmart\Gmart\CuteTool\WisGetData\obj\Debug\Wis文件离散数据提取.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
config.ini
使用说明.txt
单机游戏下载，最新单机游戏下载.url
.url