a282d69e754c156c08275f8fb90f395a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a282d69e754c156c08275f8fb90f395a_JaffaCakes118
Size

8.3MB
MD5

a282d69e754c156c08275f8fb90f395a
SHA1

e49af93d0dbff4962287a90cba4c456d7657e7ae
SHA256

b753bc8c73eb7e1d6a41c930c4ecee7605c570e05573704c1daf7d6232225826
SHA512

67fff6e418efa658307678c1abbf05e10724f6c7aead8607184e946f8ce5f7da675f5f4b14af2435584f107d14ee91d1f6f3fa6c51b39bacb60c06788c436bb5
SSDEEP

196608:nx+d1DHByopoHuitNj/UpkSO7Rn8N4TjBna3oDi:xynPeNj8kSWn8Nn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HA_totalvideoconverter314_CZ.EXE

Files

a282d69e754c156c08275f8fb90f395a_JaffaCakes118
.rar
HA_totalvideoconverter314_CZ.EXE
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

S2C!
Size: - Virtual size: 640KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Fox!
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2008
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
新云软件.url
.url
汉化说明.txt