2b6ddd93b0445e3052854ccb2b8831c0_JaffaCakes118

General

Target

2b6ddd93b0445e3052854ccb2b8831c0_JaffaCakes118
Size

797KB
MD5

2b6ddd93b0445e3052854ccb2b8831c0
SHA1

d25de2a084e23911cd32819c9624799bd9d48265
SHA256

30ba1dd6c1f964555d7c4634e7b35791c914d50b03a630e3b0b540eb8609669b
SHA512

58dd362333e1ef31920963e7463d1101e5e8c4c5d8659b6252381afa457d75d7e724231342ef6ea632576ab1d62694d056a582fdaf85c3d1dfe1cc7d2c52ea70
SSDEEP

24576:mMdMIN22yZoHTCTbZusuPWiBa/Pwzmzmpqca85Nz8hJL:mMdMIN22gbZuUt/Pw6zDDL

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/12号偷跑无限加速跑跑美美1.1/meimei.dll
unpack001/12号偷跑无限加速跑跑美美1.1/跑跑牛车之跑跑美美1.1.exe

Files

2b6ddd93b0445e3052854ccb2b8831c0_JaffaCakes118
.rar
12号偷跑无限加速跑跑美美1.1/meimei.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.nsp0
Size: - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 285KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
12号偷跑无限加速跑跑美美1.1/使用方法.txt
12号偷跑无限加速跑跑美美1.1/跑跑牛车之跑跑美美1.1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.nsp0
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 515KB - Virtual size: 516KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.nsp0 Size: - Virtual size: 480KB

.nsp1 Size: 285KB - Virtual size: 288KB

.nsp2 Size: - Virtual size: 2KB

Headers

File Characteristics

Sections

.nsp0 Size: - Virtual size: 1.2MB

.nsp1 Size: 515KB - Virtual size: 516KB

.nsp2 Size: - Virtual size: 7KB

.nsp0
Size: - Virtual size: 480KB

.nsp1
Size: 285KB - Virtual size: 288KB

.nsp2
Size: - Virtual size: 2KB

.nsp0
Size: - Virtual size: 1.2MB

.nsp1
Size: 515KB - Virtual size: 516KB

.nsp2
Size: - Virtual size: 7KB