b1db84b3b16876a723adf3183a6c033a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b1db84b3b16876a723adf3183a6c033a_JaffaCakes118
Size

753KB
MD5

b1db84b3b16876a723adf3183a6c033a
SHA1

0e6ee2098ee3c14015558140f4805c2f253db466
SHA256

6235f4368d8fd84e79c7ea38ba81062dd2449f051dace260d3d264c73b7e18de
SHA512

4c6f913db6805caa93a8720083567a12b39514a3abe5a4bc0e4f1047e99504d57f891106fd8040d305362e45c6c465475d2f30232311ba81cab8383cb6e69df5
SSDEEP

12288:n6pqEbdXljZWAAPKpSD88Ip8SIL8uYJVk1DwNfLL7iQFEpzC4NCB7+j+wyQWOox4:n6pBJWAAPKoD5I2SW8uYJaD0nOQge440

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HEdit Version 3.2.0.1 绿色汉化版/HEdit.exe

Files

b1db84b3b16876a723adf3183a6c033a_JaffaCakes118
.zip
HEdit Version 3.2.0.1 绿色汉化版/@解除右键 HEdit.reg
HEdit Version 3.2.0.1 绿色汉化版/@集成右键 HEdit.reg
HEdit Version 3.2.0.1 绿色汉化版/Desktop.ini
HEdit Version 3.2.0.1 绿色汉化版/HEdit(十六进制编辑器)下载 3.2.0.1 中文版_ - pc6下载站.url
.url
HEdit Version 3.2.0.1 绿色汉化版/HEdit.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 158KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 18KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ATA118
Size: 563KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
HEdit Version 3.2.0.1 绿色汉化版/HEdit.wri
.wri .rtf
HEdit Version 3.2.0.1 绿色汉化版/使用更新说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

Size: 158KB - Virtual size: 316KB

Size: 18KB - Virtual size: 76KB

Size: 4KB - Virtual size: 28KB

Size: 4KB - Virtual size: 36KB

.rsrc Size: 21KB - Virtual size: 24KB

Size: - Virtual size: 2.7MB

ATA118 Size: 563KB - Virtual size: 564KB

.rsrc
Size: 21KB - Virtual size: 24KB

ATA118
Size: 563KB - Virtual size: 564KB