170b9263b6e0e5e308ee8c6876463ae6_JaffaCakes118 | Triage

Sharing

General

Target

170b9263b6e0e5e308ee8c6876463ae6_JaffaCakes118
Size

977KB
MD5

170b9263b6e0e5e308ee8c6876463ae6
SHA1

e650c545a571a6000108ff8a13fcb09c351329b9
SHA256

969d0dffd17152ef7327d19c6a141d606e29697bf20c5db88a99aaad99770d07
SHA512

fd8586748970bb314c668e41032b35476ae7510b986cab8e438b90a79850ae4cfb1a8f986ae5cb0d0e1101c4906eb0b38703d29418a6bb1afe4260163592e089
SSDEEP

24576:WxdOLB3snfqTKnsaQfR7zkUQIoel6xrbX9nNwWTkBh:WbOdsnfHnXQfR7z/yX9NwUkBh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/破解教學/keygen.exe

Files

170b9263b6e0e5e308ee8c6876463ae6_JaffaCakes118
.rar
破解教學/ReadMe.txt
破解教學/Required.rar
.rar
tw10428.dat
tw12216.dat
tw12508.dat
預設動作.atn
預設圖樣.pat
預設工具預設集.tpl
預設新增文件大小.txt
預設樣式.asl
預設漸層.grd
預設筆刷.abr
預設自訂形狀.csh
預設色票.aco
預設輪廓.shc
預設鍵盤快速鍵.kys
破解教學/keygen.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.PDX
Size: - Virtual size: 628KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PDX
Size: 183KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE