a4714322e16dd74ec24f45644df31e83_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4714322e16dd74ec24f45644df31e83_JaffaCakes118
Size

17KB
MD5

a4714322e16dd74ec24f45644df31e83
SHA1

cb7920447d6b9ab672a0edc80cf0918014aaf311
SHA256

6d0aa9aa6bd214030bdad7bfc893e678bab40cec719e6c13e7e36c3e6fc86175
SHA512

5b95a18cfdc30c26bf5eff5f5094a5a59bb0960310580f830570462a6de06f355088405ec42589d6883f5d4d2ab254bff438523c1f15144ae9a88a2fd9ef4b30
SSDEEP

384:+08DmcQ8dHpNiXZfuAJmru83pF7TZYWPuIEGJOFlN:+08DmcQ8dHpNi1uua71YWPm

Score

1^/10

Malware Config

Signatures

Files

a4714322e16dd74ec24f45644df31e83_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

11:af:28:14:42:7f:82:ba:46:04:40:ca:66:6c:74:95
Certificate

Issuer

CN=Qizhi Software (beijing) Co. Ltd

Not Before

31/12/2007, 16:00

Not After

31/12/9998, 16:00

Subject

CN=Qizhi Software (beijing) Co. Ltd

b3:85:a7:0b:3c:e0:48:40:a1:23:30:ee:2b:33:41:01:69:cc:31:bc
Signer

Actual PE Digest

b3:85:a7:0b:3c:e0:48:40:a1:23:30:ee:2b:33:41:01:69:cc:31:bc

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.packed
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.packed
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE