ff52845bbcf0e67ef40916a674b9331d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff52845bbcf0e67ef40916a674b9331d_JaffaCakes118
Size

2.0MB
MD5

ff52845bbcf0e67ef40916a674b9331d
SHA1

cb636a09d6c09a45e0a5280a330a92b01530bba3
SHA256

d27762b7cb99eeeb5406b1fe7c10c176faf6e236f9e0ad80f955213c4bf1cb51
SHA512

d2830924e385af50bf31730bfb5b6bf29976f325a54abc64da424cf947aea653dde8ce0b05a0a9b2884bfc84f97d49851a725cdabb025e7683c4f2f92d09fbfc
SSDEEP

49152:9E2vv+2E2vv+MtGzGMYP2gtJFliqdpMV1ykZaTgak:9EGv+2EGv+WfPP288UkZas

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RAR Password Recovery Magic 6.1.1.232 内存注册机.exe

Files

ff52845bbcf0e67ef40916a674b9331d_JaffaCakes118
.rar
RAR Password Recovery Magic 6.1.1.232 内存注册机.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

KeyMake
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

AntiKill
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
绿色先锋首页_greenxf.com.url
.url
软件使用说明greenxf.com.txt
软件更新.url.url
.url