b0654ff4c09dd7347ca97fee936f44a4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0654ff4c09dd7347ca97fee936f44a4_JaffaCakes118
Size

34KB
MD5

b0654ff4c09dd7347ca97fee936f44a4
SHA1

19812bbc9d316373523b4e386a4c5519e5d5fbc0
SHA256

d098872a04f61a3c96db9b8449d769c6d275adcabf835a318677a65316f4005e
SHA512

d4e18174347f1815e886eca598d8e9f5200c08ca8702265092840206e9b66166860e2edafa4bc1802386f8d7b1becc23b219d42c568e35127521f4427c7b3a2a
SSDEEP

768:+8dM3ICOJEVCEFG40DVI/7zPqem2GBv2o0kNd:+2ZCj5cVi7zie0Bv2od

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Sonic.Foundry.MP3.Plugin.v2.0.Keymaker/damn_MP3Plugin_kg.exe

Files

b0654ff4c09dd7347ca97fee936f44a4_JaffaCakes118
.zip
Sonic.Foundry.MP3.Plugin.v2.0.Keymaker/damn.nfo
Sonic.Foundry.MP3.Plugin.v2.0.Keymaker/damn_MP3Plugin_kg.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 14KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.redata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Sonic.Foundry.MP3.Plugin.v2.0.Keymaker/file_id.diz