73f252db8cdf394621a2dcb4ab722a85_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73f252db8cdf394621a2dcb4ab722a85_JaffaCakes118
Size

2.2MB
MD5

73f252db8cdf394621a2dcb4ab722a85
SHA1

e1a6e6c6617668c6aeb12acfcf0e5a20ef7ce27d
SHA256

9e0aa3b389df06b478969c31ba5fcd1a415f610d03d4bec8224ed1a9c42c7796
SHA512

2b5272910c919d27ff48d64d8ae1311f94d0546ef506b0d0c0c488c68c8f1e9305c1c552bb87daa27ee7bb67eec029b84cea1c00a39859efd2f2377b98e3748d
SSDEEP

49152:lMdVxfAvsbfHQoj00TPiqC3tIRnU4fsHee5mREVC8DQGU3OIMRqRKz:y3AMvinqCdIRU40ee4yC81U3ODqw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/媒体嗅探神器V2.0.2/媒体嗅探神器V2.0.2.exe

Files

73f252db8cdf394621a2dcb4ab722a85_JaffaCakes118
.rar
媒体嗅探神器V2.0.2/52xixi嗅探.ini
媒体嗅探神器V2.0.2/使用说明.txt
媒体嗅探神器V2.0.2/媒体嗅探神器V2.0.2.exe
.exe windows:5 windows x86 arch:x86

50f7c2e67b3d0cf63840208bccc3425c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32 kernel32

CreateDIBitmap #6

Sections

.text
Size: 1.9MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ