55898402a68447f59f33ad360c1ad409_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

55898402a68447f59f33ad360c1ad409_JaffaCakes118
Size

107KB
MD5

55898402a68447f59f33ad360c1ad409
SHA1

22538b84d9f54ff6ddcb668565ade0130cdb2505
SHA256

bceddda2326bd4a654af343dbc3b146ac1645a06950cc5e5d7d7869bea47d2c8
SHA512

a51ed571ad6a99bbc44500dc31b0e1380c2a38a5a1149c495ae08d85017c184b12cf2e52e4179910ca73d4438214bec7d332916cbc48e7e074a4fca22c294506
SSDEEP

3072:kMq9cDf0NJaPM6PfuU+7t5mUruDqOLN/d6:ZDfSr6O159rIC

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Asterisk Logger.exe
unpack001/soft2cn．com汉化说明.exe

Files

55898402a68447f59f33ad360c1ad409_JaffaCakes118
.rar
Asterisk Logger.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

heatray0
Size: - Virtual size: 108KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

heatray1
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

heatray2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Asterisk Logger_lng.ini
astlog.chm
.chm
soft2cn．com汉化说明.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

HH_By_Soft2CN
Reserverd
fzh_s2c
refreshDesktop

Sections

CODE
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
使用必读.url
.url
说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

heatray0 Size: - Virtual size: 108KB

heatray1 Size: 26KB - Virtual size: 28KB

heatray2 Size: - Virtual size: 3KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 128KB - Virtual size: 127KB

DATA Size: 2KB - Virtual size: 1KB

BSS Size: - Virtual size: 1KB

.idata Size: 5KB - Virtual size: 5KB

.edata Size: 1KB - Virtual size: 1KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 8KB - Virtual size: 7KB

.rsrc Size: 20KB - Virtual size: 19KB

heatray0
Size: - Virtual size: 108KB

heatray1
Size: 26KB - Virtual size: 28KB

heatray2
Size: - Virtual size: 3KB

CODE
Size: 128KB - Virtual size: 127KB

DATA
Size: 2KB - Virtual size: 1KB

BSS
Size: - Virtual size: 1KB

.idata
Size: 5KB - Virtual size: 5KB

.edata
Size: 1KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 20KB - Virtual size: 19KB