5dde2eb1bdb8bb2b501f6820be443a35_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5dde2eb1bdb8bb2b501f6820be443a35_JaffaCakes118
Size

298KB
MD5

5dde2eb1bdb8bb2b501f6820be443a35
SHA1

25865432d401d3fc5dce9218dc75f95414e9962a
SHA256

a659a46fd810a8f2cbbee006054eb7f3af21b420cfee0de96fbb40f1f41e14c2
SHA512

74f3c9373528957674ff2d22f0f1997d11f2e3de68300deb7ddc5273736dde3ba0132654d676863135b6a0de5a5ac209543ce7211cb72fac1de2f2250ce8047b
SSDEEP

6144:L9hulngjgtAbrAGQoZCnSXtCHQeSSd37vQFyBMzgM+38GhmF/dSzIY7VWMg:BQlgjgbGZKSXtLSJ7vsCjr3qSzHpWMg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/XRipper 0.3B_chs/XRipper 0.3B.exe

Files

5dde2eb1bdb8bb2b501f6820be443a35_JaffaCakes118
.rar
XRipper 0.3B_chs/Rlz_Info.txt
XRipper 0.3B_chs/XRipper 0.3B.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

��
Size: 238KB - Virtual size: 592KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��ta
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��ta
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��oc
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��c
Size: 33KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��ack
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

P��
Size: 432B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
XRipper 0.3B_chs/飘荡软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

��� Size: 238KB - Virtual size: 592KB

��� Size: 3KB - Virtual size: 8KB

��� Size: - Virtual size: 4KB

���ta Size: 3KB - Virtual size: 12KB

��� Size: - Virtual size: 4KB

���ta Size: 512B - Virtual size: 4KB

���oc Size: - Virtual size: 44KB

���c Size: 33KB - Virtual size: 136KB

���ack Size: 86KB - Virtual size: 88KB

.adata Size: - Virtual size: 4KB

P�� Size: 432B - Virtual size: 8KB

��
Size: 238KB - Virtual size: 592KB

��
Size: 3KB - Virtual size: 8KB

��
Size: - Virtual size: 4KB

��ta
Size: 3KB - Virtual size: 12KB

��
Size: - Virtual size: 4KB

��ta
Size: 512B - Virtual size: 4KB

��oc
Size: - Virtual size: 44KB

��c
Size: 33KB - Virtual size: 136KB

��ack
Size: 86KB - Virtual size: 88KB

.adata
Size: - Virtual size: 4KB

P��
Size: 432B - Virtual size: 8KB