3082ac65b24f9384fce10ff1b0a0117b_JaffaCakes118 | Triage

Sharing

General

Target

3082ac65b24f9384fce10ff1b0a0117b_JaffaCakes118
Size

746KB
MD5

3082ac65b24f9384fce10ff1b0a0117b
SHA1

106037adee356f62ed6b2d0451154ddab2d9192f
SHA256

b372521f69e73b129dc69b1b81ceb5ba8964a81a7feaf136002ed0d3b1de5638
SHA512

16547989dfb53fb37bfac0507a324d085c99088461124a57831b1a509a8f8ab7828080e8c2c945990c8293cdfe58d5a148f776cd79e0c7e8eae4f5439e5d3bad
SSDEEP

12288:cw5H+nxEYipVK/LIKQNK9lOA6D7MHOmbpWg1ZdW0sV/KclKf621dMA9bxtq4QKWf:cwYRipE/LIKQNsj6/KNbkgHdK/KclKfm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/FlashP26/FlashP2.exe

Files

3082ac65b24f9384fce10ff1b0a0117b_JaffaCakes118
.rar
FlashP26/FlashP2.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 277KB - Virtual size: 936KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 344KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
FlashP26/History.txt
FlashP26/Readme.txt
FlashP26/使用说明.txt
FlashP26/易网时代绿软基地.url
.url
FlashP26/说明.htm
.html