4048697fe01c716952b1c62415fd8588_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4048697fe01c716952b1c62415fd8588_JaffaCakes118
Size

3.0MB
MD5

4048697fe01c716952b1c62415fd8588
SHA1

edb5c34ec3ed17b8174b2ec1af5110619005f3de
SHA256

37575be6673d43a6704250f44c7aa3ee3cb62c176c633c5a65fd98966451fce8
SHA512

3c93540082615fd80541700b7df6ff52407e1298981ac0652a5295725232361d6430a72d187cac52efac6853644e1863069c5282763d759b3cc99cbb2ce4770c
SSDEEP

49152:StW5a0RBsHPGAc14br0O/6fAyFtpMt/RQbf0IeHIF8niuetxhAGYPMXLkyjSUh1l:StW5DRBsHPGMX/fbhRQg9iVDABoJhkby

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Magic Mirror/Magic Mirror.exe
unpack001/Magic Mirror/soft2cn．com汉化说明.exe

Files

4048697fe01c716952b1c62415fd8588_JaffaCakes118
.rar
Magic Mirror/Config.ini
Magic Mirror/Magic Mirror.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

heatray0
Size: - Virtual size: 8.0MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

heatray1
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

heatray2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Magic Mirror/Web/image/1.gif
.gif
Magic Mirror/Web/image/2.gif
Magic Mirror/Web/image/3.gif
.gif
Magic Mirror/Web/image/Thumbs.db
Magic Mirror/Web/image/apebox.gif
Magic Mirror/Web/image/audiorecorder.gif
Magic Mirror/Web/image/box.jpg
.jpg
Magic Mirror/Web/image/capture.gif
Magic Mirror/Web/image/css.css
Magic Mirror/Web/image/funmorph.gif
Magic Mirror/Web/image/funphotor.gif
Magic Mirror/Web/image/mmbox.gif
Magic Mirror/Web/image/new.gif
.gif
Magic Mirror/Web/image/pdcbox.gif
Magic Mirror/Web/image/red.gif
.gif
Magic Mirror/Web/image/ssr.gif
Magic Mirror/Web/image/swrbox.gif
Magic Mirror/Web/image/t.gif
.gif
Magic Mirror/Web/image/z.gif
Magic Mirror/Web/ourproducts.htm
.html
Magic Mirror/soft2cn．com汉化说明.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

HH_By_Soft2CN
RefreshDesktop

Sections

S2C0
Size: - Virtual size: 292KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

S2C1
Size: 158KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.~s2c
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Magic Mirror/test.bmp
Magic Mirror/w1.wav
Magic Mirror/w2.wav
Magic Mirror/w3.wav
Magic Mirror/w4.wav
logo.gif
.gif
下载使用说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

heatray0 Size: - Virtual size: 8.0MB

heatray1 Size: 1.5MB - Virtual size: 1.5MB

heatray2 Size: - Virtual size: 3KB

Headers

File Characteristics

Exports

Exports

Sections

S2C0 Size: - Virtual size: 292KB

S2C1 Size: 158KB - Virtual size: 160KB

.~s2c Size: 16KB - Virtual size: 16KB

heatray0
Size: - Virtual size: 8.0MB

heatray1
Size: 1.5MB - Virtual size: 1.5MB

heatray2
Size: - Virtual size: 3KB

S2C0
Size: - Virtual size: 292KB

S2C1
Size: 158KB - Virtual size: 160KB

.~s2c
Size: 16KB - Virtual size: 16KB