19468090c39a0ebcd3826c4c60188f17_JaffaCakes118 | Triage

Sharing

General

Target

19468090c39a0ebcd3826c4c60188f17_JaffaCakes118
Size

334KB
MD5

19468090c39a0ebcd3826c4c60188f17
SHA1

48f06c430e833a11bb62ad44357e137fab66c0e2
SHA256

2d12a33ba3575852648e0a7d7fe7e20aecf4e25409504ff86a98eef6fb7b3dbd
SHA512

d28cb5e752bea42d853e0716abea5cbdae31ead59ea7237dcfe949bc2fb7c5e552e643e6651e39ddfde42f9c4f2afa175b330307f99ca5b53c2e15a274a257e4
SSDEEP

6144:jGQOy0+PWMB+/KF8qq+ebpkvq37fGI7Cyr01jAgnh9+RXRf:qQOKPWMB7jq5bpkC37fGwCR1jAwh9AXZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19468090c39a0ebcd3826c4c60188f17_JaffaCakes118

Files

19468090c39a0ebcd3826c4c60188f17_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\김민정\프로그램\업데이트모듈\동의창\Lottocube\소스\동의창\동의창\cubeux.exe_1.0.0.2\Release\HiSantaNotifier.pdb

Sections

.text
Size: 288KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ