dc1e0e60762b87c103f80a9a112f6d1b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dc1e0e60762b87c103f80a9a112f6d1b_JaffaCakes118
Size

1.1MB
MD5

dc1e0e60762b87c103f80a9a112f6d1b
SHA1

baae0aaf7203242d2968e43c574e9688dd81280d
SHA256

17e047a33b4931ec30305883870d983d5e66a74c6f0a7ce92b180b41f3bccad2
SHA512

e4473c0b0efea948d64569095852fbc7583c30cad3eeed2dac1b41e47a993ec7b347cdcbfe2e0ad31070984b858cee6788612f8d69a6f3cd4a21fc1be4004ccd
SSDEEP

24576:9HWHDoy75/FmxvA9kfiTCa+R1Ucwib1AupGRdaRR:9HS75YxvADyR1Ucr6upx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PJSNotes/Banknote.exe

Files

dc1e0e60762b87c103f80a9a112f6d1b_JaffaCakes118
.rar
PJSNotes/173绿色软件.url
PJSNotes/173软件下载.txt
PJSNotes/Banknote.exe
.exe windows:4 windows x86 arch:x86

5f7a84930ca70110899f7db9c6a489f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

FreeLibrary

Sections

Size: 581KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 684KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bnosiuxj
Size: 505KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zcstnoxh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PJSNotes/Config.ini
PJSNotes/新手上路.txt
PJSNotes/票据模版/业务委托书1工行模版.set
PJSNotes/票据模版/商业承兑汇票模版.set
PJSNotes/票据模版/托收凭证模版.set
PJSNotes/票据模版/支票类模版.set
PJSNotes/票据模版/汇票申请书1工行模版.set
PJSNotes/票据模版/现金支票背书模版.set
PJSNotes/票据模版/现金解款单模版.set
PJSNotes/票据模版/贷记凭证1模版.set
PJSNotes/票据模版/贷记凭证2模版.set
PJSNotes/票据模版/贷记凭证3模版.set
PJSNotes/票据模版/转账支票背书模版.set
PJSNotes/票据模版/进账单类模版1.set
PJSNotes/票据模版/进账单类模版2.set
PJSNotes/票据模版/进账单类模版3.set
PJSNotes/票据模版/进账单类模版4.set
PJSNotes/票据模版/进账单类模版5.set
PJSNotes/票据模版/预算拨款凭证模版.set

Sharing

General

Malware Config

Signatures

Files

5f7a84930ca70110899f7db9c6a489f1

Headers

File Characteristics

Imports

kernel32

Sections

Size: 581KB - Virtual size: 1.3MB

.rsrc Size: 24KB - Virtual size: 92KB

.idata Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 684KB

bnosiuxj Size: 505KB - Virtual size: 508KB

zcstnoxh Size: 512B - Virtual size: 4KB

.rsrc
Size: 24KB - Virtual size: 92KB

.idata
Size: 512B - Virtual size: 4KB

bnosiuxj
Size: 505KB - Virtual size: 508KB

zcstnoxh
Size: 512B - Virtual size: 4KB