6f703c86d0601f825c58f52e0fbf89d8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6f703c86d0601f825c58f52e0fbf89d8_JaffaCakes118
Size

855KB
MD5

6f703c86d0601f825c58f52e0fbf89d8
SHA1

25a58b4a24886e791c6989dee81fb8d4ebad1386
SHA256

7601a979fadad59c33778b7043b5547174ed14f8b408382a936b486e4433c0c9
SHA512

f692f58c27dec591d68e2df434c239b6738e59f2d3b640efb9ad20692edd961416a729f63930a6e50a81289346e237f51979c70fd1361d28cbf281a66432e938
SSDEEP

24576:Rfw5PxTw21kJGCUKj+Hgvx3kz0XMuY1vxrNw7uO/4:Rfw5y21kJpx+Hgvx3kz0XMu6fwhA

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PenyuUSB/PenyuUSB.exe
unpack001/PenyuUSB/SoftwareLock.dll

Files

6f703c86d0601f825c58f52e0fbf89d8_JaffaCakes118
.rar
PenyuUSB/PenyuRad.ico
PenyuUSB/PenyuUSB.chm
.chm
PenyuUSB/PenyuUSB.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\MilRad Dungun\RND\MilRad\PenyuUSB\PenyuUSB\obj\x86\Release\PenyuUSB.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 127B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PenyuUSB/SoftwareLock.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\MilRad Dungun\RND\MilRad\PenyuLAN\SoftwareLock\obj\Debug\SoftwareLock.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 129B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.sdata Size: 512B - Virtual size: 127B

.rsrc Size: 363KB - Virtual size: 363KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 14KB - Virtual size: 14KB

.sdata Size: 512B - Virtual size: 129B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 1.9MB - Virtual size: 1.9MB

.sdata
Size: 512B - Virtual size: 127B

.rsrc
Size: 363KB - Virtual size: 363KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 14KB - Virtual size: 14KB

.sdata
Size: 512B - Virtual size: 129B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 12B