b2bc6076dfb41e5f815f520855f40ed9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2bc6076dfb41e5f815f520855f40ed9_JaffaCakes118
Size

300KB
MD5

b2bc6076dfb41e5f815f520855f40ed9
SHA1

76f6e376a5d0317e5d0aa46e092c637556657a1f
SHA256

b6539eefcc650a6f717e45b6e4bd3f80af3d41df6e73bdfd79baac6c15f398db
SHA512

5091922f87f444d2c3658912201c3b6076eb009fd69ff8700eefb5e300b4599e0fb6d23f93555526d106416a62779a16f899302a2cf78662ec1ef0c08d4392fb
SSDEEP

6144:WQWsuzipPh9852LQDL7K2OtakmUg7NpetBeI6lVlcrN:bF6ipJ980UDL7KLaIkNpe23ch

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/entxt/EnTxt.exe

Files

b2bc6076dfb41e5f815f520855f40ed9_JaffaCakes118
.rar
entxt/EnTxt.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 534KB - Virtual size: 533KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
entxt/entxt.jpg
.jpg
entxt/说明.txt