02fdac5ac3d2c23dc92d96068f014591_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02fdac5ac3d2c23dc92d96068f014591_JaffaCakes118
Size

31KB
MD5

02fdac5ac3d2c23dc92d96068f014591
SHA1

afaa0d1ca70c495f0c0436cd22fe940a3a24d304
SHA256

95e62a15999776eca4f90a3b2e409e87008b83308c22897900544caecafb74a6
SHA512

91cec0a9f50f766b7f82f3f78d0d4f4aee234681f55c16e1d44790e4c354807f98c5cf8ceaba81909fbe5bde9af35ee2c8f16348d739159d3d9b690164e621ec
SSDEEP

768:GF2tEkBm2LZxb4HDp4s94Dfm3NiqMfuSOH:GFQEb2LPKDp4smyx+uSOH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Exe2Html v1.0(EXE转换HTML).exe

Files

02fdac5ac3d2c23dc92d96068f014591_JaffaCakes118
.rar
Exe2Html v1.0(EXE转换HTML).exe
.exe windows:4 windows x86 arch:x86

b8111320f794d9e62a7ffe5d84bed59a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualFree
VirtualAlloc

Sections

BY:��'
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BY:��'
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BY:��'
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE