6417224c76b0b7a44102222ec2c240ff_JaffaCakes118 | Triage

Sharing

General

Target

6417224c76b0b7a44102222ec2c240ff_JaffaCakes118
Size

1.2MB
MD5

6417224c76b0b7a44102222ec2c240ff
SHA1

a63168b8eb8da8ce3c9844a5c36e4af923e58719
SHA256

77105082b4592a7b31054287beb490bf230f9cbfea02ad5c9a022f0d166b03a5
SHA512

3513cbd5e3a4a1d67cede00714b86ea4ab38e8b6ba84bbbcedf96d052670af3fcaa801b50ea693005ccc6e39e31a247135912ffdc8c1142e7692fded56a9ce5f
SSDEEP

24576:WmtVV0f1gdfWpw+LA4up5T8ms7IervtIZz2mdG/zcnLdDJteeF2:WWVV0f4fWS+0Zj8ZIatovG/zcnLddte5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/DriverBuckUpv/DriverBuckUp.exe

Files

6417224c76b0b7a44102222ec2c240ff_JaffaCakes118
.rar
DriverBuckUpv/DriverBuckUp.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
DriverBuckUpv/FLASH动画频道欣赏.url
.url
DriverBuckUpv/技术文章中心.url
.url
DriverBuckUpv/最多绿色软件的地方－－河源下载站.url.url
.url
DriverBuckUpv/河源下载站.url
.url
DriverBuckUpv/河源下载站Cngr.cn说明.txt
DriverBuckUpv/相关说明.htm