a695fc6fabcf767377e51983fbc90080_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a695fc6fabcf767377e51983fbc90080_JaffaCakes118
Size

732KB
MD5

a695fc6fabcf767377e51983fbc90080
SHA1

5de30aada60b7e93df6179749e979acbd118e3a9
SHA256

c9dfcc1a15f178254ded603e871a160386662168c69abfcd2abeed51c0cf0827
SHA512

a89490b71654d1cb741d3ace2972fa1a60d937c15d63f5a21a3652dbb683f23c87c7b98b3946e755a7d18fde89dc29ddb02af26bf9d80bef0da7832dd383de38
SSDEEP

12288:VLCYRCqeEyBdWjy4VDtiZWNWNwTg5oUuJ8s56c7nuQIiCxqF1o:9DLUWjDrNtg5Va5fjZWio

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CounterSpy_v1.5.77_Cracked-TNT/CRACK/CounterSpy.exe
unpack001/CounterSpy_v1.5.77_Cracked-TNT/PATCHER/CS_CRACK.EXE

Files

a695fc6fabcf767377e51983fbc90080_JaffaCakes118
.zip
CounterSpy_v1.5.77_Cracked-TNT/CRACK/CounterSpy.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

TNT!
Size: - Virtual size: 3.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TNT!
Size: 712KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CounterSpy_v1.5.77_Cracked-TNT/PATCHER/CS_CRACK.EXE
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

TNT!
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TNT!
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CounterSpy_v1.5.77_Cracked-TNT/file_id.diz
CounterSpy_v1.5.77_Cracked-TNT/tnt.nfo