dacac72f8e3d7764ee54e38efb327634_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dacac72f8e3d7764ee54e38efb327634_JaffaCakes118
Size

167KB
MD5

dacac72f8e3d7764ee54e38efb327634
SHA1

68ee5bea14b2c3d9dc5c36ca61ca3de619bc18e5
SHA256

5aeada7a07a88ababe7346b04c49d0b36a3956f7c0d62335e1871c0867a30dd6
SHA512

9e604d6e818c94e98e8c27a9f57f6869bb3d5a8feb9c2185d5b0a202a3f94303f5731c9367ba5926d2325fef01c8f7cd4b5898ac9644a9d0790d744767e747d4
SSDEEP

3072:2FpC21d+gR3XkN+4vAMaFQMnS1J/msFb3o3bjddjta80ndZ0JjdYHK0T:W1oo3UN9SFq/B13o33nta8aHrT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Trainer.exe

Files

dacac72f8e3d7764ee54e38efb327634_JaffaCakes118
.zip
Trainer.exe
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

.DYCUS
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DYCUS
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DYCUS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DYCUS
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DYCUS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DYCUS
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 143KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DYCUS
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
deviance.nfo
gameguru.nfo