03e314d9c7db135cd7b130c277c149d1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

03e314d9c7db135cd7b130c277c149d1_JaffaCakes118
Size

189KB
MD5

03e314d9c7db135cd7b130c277c149d1
SHA1

5af79b1c49cd8aaf5ba2a496264fc1328d002d8e
SHA256

181445db7981de5b5146ee11c0514464ef0e5d996cc25e5dbaae6b963aacffd3
SHA512

d9c4db1eadb89d6e6bcb1ba87d9fb1dc7a19cfbfc81462553355e04d726b1207365cf9203e75dd842b86f486e9b6cda25d852e58ea583c8d44686c9f851f4e4e
SSDEEP

3072:OOuFp1CwJz6bheRcIjrcdtCu2IdMejZ0QnNcvp//fU/1G45+F3G6kYYlld9kS5E3:Ot5Nd6wbovCEdvZLoC/2kJVSlf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/nthunterv2/NTHunterV2_0.exe

Files

03e314d9c7db135cd7b130c277c149d1_JaffaCakes118
.zip
nthunterv2/##ע##.txt
nthunterv2/77169.orgʹð˵.txt
nthunterv2/77169.org˵.htm
.html
nthunterv2/NTHunterV2_0.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 140KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
nthunterv2/Readme.txt
nthunterv2/лл.txt
nthunterv2/ĺڿͬ.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 140KB - Virtual size: 296KB

DATA Size: 2KB - Virtual size: 8KB

BSS Size: - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 8KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 20KB

.rsrc Size: 34KB - Virtual size: 208KB

.adata Size: 5KB - Virtual size: 8KB

.udata Size: - Virtual size: 4KB

CODE
Size: 140KB - Virtual size: 296KB

DATA
Size: 2KB - Virtual size: 8KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 8KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 20KB

.rsrc
Size: 34KB - Virtual size: 208KB

.adata
Size: 5KB - Virtual size: 8KB

.udata
Size: - Virtual size: 4KB