81da85e0ee4d2cc56463755664f911c3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

81da85e0ee4d2cc56463755664f911c3_JaffaCakes118
Size

122KB
MD5

81da85e0ee4d2cc56463755664f911c3
SHA1

cad9f8272e608852b0c7f487a3688bfe67c5eb35
SHA256

18f0f4fe59b79339b9a254e1c5fc8d865515db365ac105bc9406067f6e2342e1
SHA512

1251a0fc2c546d63785e27cb32311cd18a28d88f67c67ebd5275cbde239a47811bbe5cc08aa587b13f2fb417cbcde5f5bdfa4dce902897cc6e7a3cfc95552bb9
SSDEEP

3072:OmeredK9aW7Ax+hW/RjFi0GVnU6mw+Nqif4m/W/gn:5erePW7vI/RjA0GJoHuon

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/rzr-set7.exe

Files

81da85e0ee4d2cc56463755664f911c3_JaffaCakes118
.zip
The Settlers 7 Cracktro (2010)(Razor 1911)(Win32)(Cracktro).diz
The Settlers 7 Cracktro (2010)(Razor 1911)(Win32)(Cracktro).nfo
The Settlers 7 Cracktro (2010)(Razor 1911)(Win32)(Cracktro).png
.png
rzr-set7.zip
.zip
rzr-set7.exe
.exe windows:4 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress

Sections

kkrunchy
Size: 39KB - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE