d58f6f2e492430fa693cdcd61cb899ee_JaffaCakes118 | Triage

Sharing

General

Target

d58f6f2e492430fa693cdcd61cb899ee_JaffaCakes118
Size

7.5MB
MD5

d58f6f2e492430fa693cdcd61cb899ee
SHA1

b1999ae976afe17903669bf35f6010d52bed0e53
SHA256

f3352de9109077b51a05dc54ff8568f8f55090fc54c4cd33f347c109ee2f5405
SHA512

d12f7b66d4439c4a2e3765130a2ff64c5b3f785287630eefcf90c7f085b9421da5a45a5a64cc97895a4ca978f4695402a057dd29a77f1a699e9e419e39a3530f
SSDEEP

196608:HQaBJkN0vtyo5ykGd7V1qnEEvRL2ER2LFpNU1MMPSJ7KRn7wXkZ2HY:HrBJkN0sGykGzOvRmLFpNUeZQw0ZEY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Lz0/Keygen.exe

Files

d58f6f2e492430fa693cdcd61cb899ee_JaffaCakes118
.zip
155ɫվ.url
.url
EULA.html
.html
Lz0/Keygen.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 496KB - Virtual size: 495KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Lz0/Linezer0.txt
Lz0/UIStudio.reg
Readme.html
.html
Setup.msi
.msi