940405cb22d15ed0bada07fc838e66d3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

940405cb22d15ed0bada07fc838e66d3_JaffaCakes118
Size

10.9MB
MD5

940405cb22d15ed0bada07fc838e66d3
SHA1

37d5aa930376f2c1dd1309bc22f85357f9dbf235
SHA256

f3d7f5aac3fa637b6befc3b2e4718b449e4062eaee5824b597dbc0cfd5f751cd
SHA512

02dba7342fa7dca94abb684a822546b57b9e706ce3f36a32cb9868a872ce6d291385501a432d98067bac656c50922440bc4ea2c4a40bc48bca40e0fcbea9e0c4
SSDEEP

196608:NfCMrQXxEdcKhYgiYG9CmS8CGcdlrIKQx2mD9ZZj+MPDWqiaAycyGv6/nQiM4:NKjFYG9CEBcd+Px9cMPDWq4fI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Lz0/Keygen.exe

Files

940405cb22d15ed0bada07fc838e66d3_JaffaCakes118
.zip
155ɫվ.url
.url
EULA.html
.html
Lz0/Keygen.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 465KB - Virtual size: 464KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Lz0/Linezer0.txt
Lz0/SyntaxEditor.reg
Readme.html
.html
Setup.msi
.msi