935e64223f4da0e534fc450683b5fb83_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

935e64223f4da0e534fc450683b5fb83_JaffaCakes118
Size

1.8MB
MD5

935e64223f4da0e534fc450683b5fb83
SHA1

e33210cdc2bf442ec11fb9fe393dc0b58cfa886f
SHA256

b8f729ce0815ee0040bd691f3b23cd883a5c265a67680224b328a1849326c593
SHA512

cf561811896edf1ce47da84c471b8bfc9978061bd0507cd703688747422d0a5dec6ed6becbd819472c8959442309007b6247308333141306c45e8ec717156e46
SSDEEP

49152:rt1+4Yjai5Y4YrLy8pv94l1/c52jdM4yXUGXi4qgaRQfQDJjR2:rt1hSLqrBv9w9ZjCXUabPUQOJR2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/《植物大战僵尸》2010年度版通用修改器/植物大战僵尸中文版修改器.exe

Files

935e64223f4da0e534fc450683b5fb83_JaffaCakes118
.rar
《植物大战僵尸》2010年度版通用修改器/植物大战僵尸中文版修改器.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 672KB - Virtual size: 669KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 88KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

yC
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
必看-常见游戏问题.url
快猴游戏网.url
更多游戏下载.url