762cf63756b079cfa7cb481f2ec2bb86_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

762cf63756b079cfa7cb481f2ec2bb86_JaffaCakes118
Size

4.8MB
MD5

762cf63756b079cfa7cb481f2ec2bb86
SHA1

ca4201a87cac276c90ad9ac24620eee4d1552acd
SHA256

bb2e67a6f1d7657d35b38093bd0a2a863af5561b71cda0c85a1bcb2b34bc756d
SHA512

ef2f8b8c6392e2f8f0d2e606d438d1fac88a252387223ad4552a3d6f861702b1d82462fe8c8b3063e44765ece3d3ed5e3d74a3226372b54743a58aa9aae86ee4
SSDEEP

98304:vHudS7dNWrLPJNYWwC6sAAfYG0dS69zlTquHq1eaL3j+D4w+ViAk:vHqS7dkPJYsWjrHqBc4Fk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/奇葩工具箱5.2/奇葩工具箱5.2.exe

Files

762cf63756b079cfa7cb481f2ec2bb86_JaffaCakes118
.rar
奇葩工具箱5.2/奇葩工具箱5.2.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

"B6\a1d=
Size: - Virtual size: 4.8MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qrr(NnlJ
Size: 4.9MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

P?]UG3{4
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
奇葩工具箱5.2/更多软件下载.url
奇葩工具箱5.2/飘荡软件.url
.url