410f027d8143797f20f6be98dc2fecd0_JaffaCakes118 | Triage

Sharing

General

Target

410f027d8143797f20f6be98dc2fecd0_JaffaCakes118
Size

935KB
MD5

410f027d8143797f20f6be98dc2fecd0
SHA1

897dcaeca0b1fa8922d79d136a59cf443082b1fb
SHA256

6e4bd38a4e04f028b405c5a91e124eafbafeae71f3974c03d315f385736affad
SHA512

d2861987fe07b87008edf09488e7bf2f87c66158111e812a070310e6edee56fa662244498b44c230835eefb56a66722e30175fcde37f71600eeacc9c8e96ac6e
SSDEEP

24576:et/HIRgHuPGpzPwdA9Np4/+6k8aHaxUpHkN:Ao58MSOs8aHaOJkN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/EasyKey1.1.exe

Files

410f027d8143797f20f6be98dc2fecd0_JaffaCakes118
.rar
EasyKey1.1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

,gtm0
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

,gtm1
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

,gtm2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
readme.txt
下载说明.html
.html