ba56af9edf56296820d06b02b40199c8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba56af9edf56296820d06b02b40199c8_JaffaCakes118
Size

1.4MB
MD5

ba56af9edf56296820d06b02b40199c8
SHA1

6e852b5c778aadaff0dc02b53dc1444502aab5a2
SHA256

c4c1947836b1c440fc1f1a2c3b21fbf014cba696c31af82f8c20476b137232f0
SHA512

0ad0206772d6d184c2eae012efd9b2b7d234b5f54340eff9920ed4f640e53eee085934b39a5464859068a941098bb08a1c83bc9d76f3baf7fb5a72666b4d1730
SSDEEP

24576:s+KYNgwWhmXem49JnW8b8brtGNqF3BCMzGGrwNNUzHFAC//2MyJKn4H1V0TpW:Qw0FmKJnYrwIaMCtNNUzlAbMkTi4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/UlHide.exe

Files

ba56af9edf56296820d06b02b40199c8_JaffaCakes118
.rar
UlHide.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

#?�l0
Size: - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

#?�l1
Size: 229KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

#?�l2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
介绍.txt
新云软件.url
.url