30aff8b701f84f77d28272ca1aa11f6e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30aff8b701f84f77d28272ca1aa11f6e_JaffaCakes118
Size

1.7MB
MD5

30aff8b701f84f77d28272ca1aa11f6e
SHA1

722912153b356eced7f3aac87b7676f793b106f3
SHA256

71f61fb865cb9eb82dfd820bf1920bac965d29d8f5faf57f47cedba85d97e0fc
SHA512

c57b50fa22339a1b0e1ce51d531ec111250a4b68cf357592eff91e7aa7ab452b0cb29504e188fa00dc4970c3be2719c8c0cc6b68f441d36f96f1a9a0df708c70
SSDEEP

49152:d9G0KrVjiQ4iFiKWtYZfXxRFOEzKXiqsuL3xXWaQ:dA1h42WtwfXxXpuSqsulXWaQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HA_MozillaHistoryView1.18_LRH/HA_MozillaHistoryView1.18_LRH.exe

Files

30aff8b701f84f77d28272ca1aa11f6e_JaffaCakes118
.rar
HA_MozillaHistoryView1.18_LRH/HA_MozillaHistoryView1.18_LRH.exe
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.Ray
Size: - Virtual size: 624KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Ray
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Ray
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
HA_MozillaHistoryView1.18_LRH/MozillaHistoryView.JPG
.jpg
HA_MozillaHistoryView1.18_LRH/新云软件.url
.url
HA_MozillaHistoryView1.18_LRH/汉化说明.txt