2cf8a44e2ff6971495e8c30c36a697b5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cf8a44e2ff6971495e8c30c36a697b5_JaffaCakes118
Size

1.5MB
MD5

2cf8a44e2ff6971495e8c30c36a697b5
SHA1

32bca27aca165d2ec693593047085f4458f0362d
SHA256

a63b350b396f73f634305d0034e406f29fe09d86b4159adac9cd7c72bb9e4e81
SHA512

8c422ff8daad03a8707e24dc439cf2b2b4cba30cc044da842b833def8f016f8feaf22a4de7ac7fb7a36b50e6e59d3bfdbd7222a1d1b5106f0b89a8f8530d3dee
SSDEEP

49152:lMvupvc0AneVh/J8K9XLXAry4WSM3ZQLTe8BzWD:lGIqq8K9w9dM3Z/8ByD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/天迹社区CF外挂www.99tianji.com/CF天迹秒杀外挂.exe

Files

2cf8a44e2ff6971495e8c30c36a697b5_JaffaCakes118
.rar
天迹社区CF外挂www.99tianji.com/CF天迹秒杀外挂.exe
.exe windows:5 windows x86 arch:x86

36cb66a0100fbdda306e4ca39a6a1117

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32 winmm

SetWindowOrgEx в

Sections

.text
Size: 1.1MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 732KB - Virtual size: 732KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ