eae8f19cf90e7e354a3bb6bd1463254a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

eae8f19cf90e7e354a3bb6bd1463254a_JaffaCakes118
Size

1.7MB
MD5

eae8f19cf90e7e354a3bb6bd1463254a
SHA1

8c639a757e26ad466f6da7c35d7b13a022055294
SHA256

680cd14d06f6db1e29858bca3ab7866011f87bd71bc449a42faa75e237c72359
SHA512

656fe647c3ea7793ba22733f407b4a6871673ea8f7ccd3d9916774d732043eb090094606e7ff59037d58ceb44d3d5924326f8def93f0c6610d216e55ba6f77ca
SSDEEP

24576:turfkNoPxGuKl3LTeWjhPg5T0F/7v+A8k1gGr7IwPleRBLCD8YzhODeIRsf:SkGQnxQ4FL+QNrkBRxCD88hODeIE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QQ农牧餐三合一 V1.391/QQHelper_1391.exe

Files

eae8f19cf90e7e354a3bb6bd1463254a_JaffaCakes118
.rar
QQ农牧餐三合一 V1.391/QQHelper_1391.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 966KB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 19KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 684KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 103KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
QQ农牧餐三合一 V1.391/下载说明.txt
QQ农牧餐三合一 V1.391/华彩联盟论坛.url
.url
QQ农牧餐三合一 V1.391/华彩软件站-使用必读.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 966KB - Virtual size: 2.9MB

DATA Size: 19KB - Virtual size: 52KB

BSS Size: - Virtual size: 24KB

.idata Size: 5KB - Virtual size: 16KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 176KB

.rsrc Size: 684KB - Virtual size: 1.7MB

.aspack Size: 103KB - Virtual size: 104KB

.adata Size: - Virtual size: 4KB

.rmnet Size: 56KB - Virtual size: 60KB

CODE
Size: 966KB - Virtual size: 2.9MB

DATA
Size: 19KB - Virtual size: 52KB

BSS
Size: - Virtual size: 24KB

.idata
Size: 5KB - Virtual size: 16KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 176KB

.rsrc
Size: 684KB - Virtual size: 1.7MB

.aspack
Size: 103KB - Virtual size: 104KB

.adata
Size: - Virtual size: 4KB

.rmnet
Size: 56KB - Virtual size: 60KB