083269469494680a6e77fa71634feaa0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

083269469494680a6e77fa71634feaa0_JaffaCakes118
Size

40KB
MD5

083269469494680a6e77fa71634feaa0
SHA1

6423bb7a12cf20763a624f13f5bcf5a4e24718f8
SHA256

87afed64a050c8f543e80861fc84df47b4548e625f66d00df009dc3356af838e
SHA512

64eaf46a5675686c6e0ac017ebf44b548a7e77bc626a3e32d554e8dd5f6c846302e7f63e44ce8c7218ac395478836266d5ee3123973583b40fac3c69e9393f1f
SSDEEP

768:eXX/Fdc27nnoqJYrjgaRJfypvDI9IHHfv25AUB93BSnnCHOJnB4O8pWZtjUx6l:Klqrnf0IAHfiD0nTB4O8pWZtUsl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/IE一键还原.exe

Files

083269469494680a6e77fa71634feaa0_JaffaCakes118
.rar
!创e下载┆绿色创意软件天堂.URL
.url
IE一键还原.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.nsp0
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
淘宝名店武林.URL
.url