0ba097461dee2a0349202b915f9735f6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ba097461dee2a0349202b915f9735f6_JaffaCakes118
Size

19KB
MD5

0ba097461dee2a0349202b915f9735f6
SHA1

80b2638c6cc2780c1691808d21630b75d1435958
SHA256

39605ac15ef093e1cba867c5a71e8daafd6b436449488e2a311d86da5deb0914
SHA512

c398571d07c6ec570c508b1a4d499029a32ff84fb0eb2ec05d9c9440f22fdba1608ba55bede8b635503ad5b81c152b84cc143933b045599e8a6323e58d1672fb
SSDEEP

384:GwPHJ0A5xH0W9mjSMOwDqPVVrW4Wd2sjJFFYG/:jPHJ0AHH0TGwmHrW40tt

Score

1^/10

Malware Config

Signatures

Files

0ba097461dee2a0349202b915f9735f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

11:af:28:14:42:7f:82:ba:46:04:40:ca:66:6c:74:95
Certificate

Issuer

CN=Qizhi Software (beijing) Co. Ltd

Not Before

31/12/2007, 16:00

Not After

31/12/9998, 16:00

Subject

CN=Qizhi Software (beijing) Co. Ltd

1e:e4:1c:93:6d:d9:4d:c1:05:b6:76:e6:28:c5:e8:2d:1a:ed:92:73
Signer

Actual PE Digest

1e:e4:1c:93:6d:d9:4d:c1:05:b6:76:e6:28:c5:e8:2d:1a:ed:92:73

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.packed
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.packed
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE