2656b55946bf683fdb523058d6ece30f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2656b55946bf683fdb523058d6ece30f_JaffaCakes118
Size

691KB
MD5

2656b55946bf683fdb523058d6ece30f
SHA1

2bef5786ea5f27b9b31c5faa060ec185e61c692e
SHA256

82435c28ed286ece150ee84287e98a41703b882f570a0849d0bd6cc568987f77
SHA512

6f774261a081702953f8ac7a93aa75fa739a6bad71e7943d277d2fd8a2c4d285f5a0fdb8d682828d89270a36b752fd288845be1cb80035b2e24c7c71cfc4d6dd
SSDEEP

12288:yn50WA4t4uciXR8k42NmRkItXeeU1gxncAZ18aOSN8Cewu3lWhkbn1+V:ynLh8k02WMs8avxep3lFb1+V

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Security.Administrator.v10.3.WinALL.Incl.Keygen.and.Patch-BRD/keygen/keygen.exe
unpack001/Security.Administrator.v10.3.WinALL.Incl.Keygen.and.Patch-BRD/keygen/newadmin.exe

Files

2656b55946bf683fdb523058d6ece30f_JaffaCakes118
.zip
Security.Administrator.v10.3.WinALL.Incl.Keygen.and.Patch-BRD/brd.nfo
Security.Administrator.v10.3.WinALL.Incl.Keygen.and.Patch-BRD/file_id.diz
Security.Administrator.v10.3.WinALL.Incl.Keygen.and.Patch-BRD/keygen/keygen.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Security.Administrator.v10.3.WinALL.Incl.Keygen.and.Patch-BRD/keygen/newadmin.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 807KB - Virtual size: 807KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 620KB - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
keygen.nfo

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

Size: - Virtual size: 164KB

Size: 60KB - Virtual size: 60KB

Headers

File Characteristics

Sections

CODE Size: 807KB - Virtual size: 807KB

DATA Size: 8KB - Virtual size: 8KB

BSS Size: - Virtual size: 3KB

.idata Size: 11KB - Virtual size: 10KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 56KB - Virtual size: 56KB

.rsrc Size: 620KB - Virtual size: 620KB

CODE
Size: 807KB - Virtual size: 807KB

DATA
Size: 8KB - Virtual size: 8KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 11KB - Virtual size: 10KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 56KB - Virtual size: 56KB

.rsrc
Size: 620KB - Virtual size: 620KB