4936c24fc7d2c9366e3b5790a5fed2e8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4936c24fc7d2c9366e3b5790a5fed2e8_JaffaCakes118
Size

11KB
MD5

4936c24fc7d2c9366e3b5790a5fed2e8
SHA1

1065811d4ddd7322f73eec7925d5f02f4e84211a
SHA256

9545264e661459fcc00c27f01b525a0409121a90fbeef39941c10b8b1366c5a4
SHA512

4d7881441899531ee49be571f4f22d19489b4afff6f6f7633a254889f20744ec9477c62ee29f84f6e45f4460f081fd8ed972b037d5f4911d373c8c5e49d7fbeb
SSDEEP

192:Eyn5SNmFhcwE/PAebexvwb4q/IU3fcTZ6NYYPhvXy0grcugAfFg8/obI:EsPFhBAt8vwbl/pPc9YPViGAfy8eI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CS1.6 CDkey.exe

Files

4936c24fc7d2c9366e3b5790a5fed2e8_JaffaCakes118
.rar
CS-HLDS.RU.txt
CS1.6 CDkey.exe
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

.aspr
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspr
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
WWW.CS-HLDS.RU.url
.url