2df964dd93da1cae5340d2fe9e94f1fd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2df964dd93da1cae5340d2fe9e94f1fd_JaffaCakes118
Size

5.2MB
MD5

2df964dd93da1cae5340d2fe9e94f1fd
SHA1

2af36a6094563279766dc1fbb329beb07270b98e
SHA256

483c366fb0a967aaa169fb066b410b2e4bd40a501307af6091c40800c4e354cf
SHA512

6d77b9a9f47b3f454f217ba6c8c48934dd2944106ccdbf8859d499eb34432ebdb50ea9826ad2a4d7714e6b302d2cac23f813ab259d2dce8d7adf4f88b3a5a89d
SSDEEP

98304:O6Tht7ta9aJUG8KI3DWtthsPnZSxJW5QTVyC5YPJvhZXVysaXT:Ogt7ta1KITWt/sPnKJUsj+5xKT

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/会GO免费加速 (5.7)/SKY.dll
unpack001/会GO免费加速 (5.7)/mfc.exe

Files

2df964dd93da1cae5340d2fe9e94f1fd_JaffaCakes118
.rar
会GO免费加速 (5.7)/24小时发卡.url
.url
会GO免费加速 (5.7)/JN.DAT
会GO免费加速 (5.7)/SKY.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 408KB - Virtual size: 996KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 52KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 36KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yP
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
会GO免费加速 (5.7)/jd.dat
会GO免费加速 (5.7)/ly.dat
会GO免费加速 (5.7)/mfc.exe
.exe windows:5 windows x86 arch:x86

d8ab127d1b3c47e3e91d689d108b5e93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32 kernel32

TrackPopupMenu k"

Sections

.text
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 791KB - Virtual size: 840KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TMD
Size: 489KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TMD
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TMD
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
会GO免费加速 (5.7)/ty.dat
会GO免费加速 (5.7)/{呼出使用教程}.url
.url
会GO免费加速 (5.7)/【全智能化挂机视频教程点击观看】.url
.url
会GO免费加速 (5.7)/【土城智能挂机砍经验猪点击观看】.url
.url
会GO免费加速 (5.7)/【智能过回收验证教程}点击观看】.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

Size: 408KB - Virtual size: 996KB

Size: 52KB - Virtual size: 224KB

Size: 36KB - Virtual size: 340KB

.rsrc Size: 32KB - Virtual size: 32KB

.reloc Size: 108KB - Virtual size: 108KB

.yP Size: 16KB - Virtual size: 36KB

d8ab127d1b3c47e3e91d689d108b5e93

Headers

File Characteristics

Imports

user32 kernel32

Sections

.text Size: 200KB - Virtual size: 200KB

.rdata Size: 5KB - Virtual size: 8KB

.data Size: 791KB - Virtual size: 840KB

TMD Size: 489KB - Virtual size: 492KB

TMD Size: 16KB - Virtual size: 16KB

TMD Size: 4KB - Virtual size: 4KB

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 108KB - Virtual size: 108KB

.yP
Size: 16KB - Virtual size: 36KB

.text
Size: 200KB - Virtual size: 200KB

.rdata
Size: 5KB - Virtual size: 8KB

.data
Size: 791KB - Virtual size: 840KB

TMD
Size: 489KB - Virtual size: 492KB

TMD
Size: 16KB - Virtual size: 16KB

TMD
Size: 4KB - Virtual size: 4KB