15ed51911431f36d78b505f617827344_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15ed51911431f36d78b505f617827344_JaffaCakes118
Size

176KB
MD5

15ed51911431f36d78b505f617827344
SHA1

b764cc2bb3f160211b6ea9a430a6fee03ac8f453
SHA256

ceef94ca9b89e5eb22ae35e82a06d04a59ac4e2890465ad027583dea203e500a
SHA512

cdb7de1ee0df94753ac8835c01420d4482b7b89258768b20fe92b734461f370c295d3cc9e57043e50993a2e5cc917faacb792abca476cb6369ef31099ead4174
SSDEEP

3072:+9s/iDTD5VCbM/JU/uFEKCqTabbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyVUh:es/2GM/JU9qowvP6bQ7yMP+DE827kC5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Crintsoft.MiniLyrics.v6.Keygen-JANOSiK/keygen.exe

Files

15ed51911431f36d78b505f617827344_JaffaCakes118
.rar
Crintsoft.MiniLyrics.v6.Keygen-JANOSiK/file_id.diz
Crintsoft.MiniLyrics.v6.Keygen-JANOSiK/janosik.nfo
Crintsoft.MiniLyrics.v6.Keygen-JANOSiK/keygen.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 15KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE