424608da4cb898bab64b8b805ed41773_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

424608da4cb898bab64b8b805ed41773_JaffaCakes118
Size

2.2MB
MD5

424608da4cb898bab64b8b805ed41773
SHA1

072a0bae6368c55bb4fe03446c43ca727aa1f2ad
SHA256

4b62d47c743f99b44123bbc6b001bef21c91f5b729e5bcf4ba1fa774fa12183e
SHA512

0524fd064d8aa17a6ae7e15a8f027499bbe45801b50751196dcefc179cc56bbf7812c29cf484dcd127e51c34226259d75f10ae414c5a357f571fa2fc2ea72667
SSDEEP

49152:GSKufVDaTF0se2cUO7TSmwBOKkY7I6nefppxP0e+xXxNyadWPxrVo:hKufVDah0lUO7TnwBOKdIQefpr81hNyW

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/QQIAC/QQIAC/QQIAC.exe	upx
static1/unpack003/爱Q生活网图标秒点工具.exe	upx

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QQIAC/QQIAC/QQIAC.exe
unpack002/out.upx
unpack003/爱Q生活网图标秒点工具.exe
unpack004/out.upx

Files

424608da4cb898bab64b8b805ed41773_JaffaCakes118
.rar
QQIAC/QQIAC/QQIAC.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 268KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 197KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe .js windows:4 windows x86 arch:x86 polyglot

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 328KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
QQIAC/QQIAC/QQIAC.mdb
QQIAC/QQIAC/skin.she
QQIAC/QQIAC/免责声明.txt
QQIAC/QQIAC/帮助文件.txt
QQIAC/QQIAC/软件简介.txt
readme.txt
使用前必看.txt
爱Q生活网图标秒点工具 .zip
.zip
爱Q生活网图标秒点工具.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 406KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 353KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 528KB - Virtual size: 527KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 560KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 372KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
起点下载.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 268KB

UPX1 Size: 197KB - Virtual size: 200KB

.rsrc Size: 99KB - Virtual size: 100KB

Headers

File Characteristics

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 7KB

.data Size: 328KB - Virtual size: 328KB

.rsrc Size: 100KB - Virtual size: 99KB

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.3MB

UPX1 Size: 406KB - Virtual size: 408KB

.rsrc Size: 353KB - Virtual size: 356KB

Headers

File Characteristics

Sections

.text Size: 528KB - Virtual size: 527KB

.rdata Size: 560KB - Virtual size: 556KB

.data Size: 60KB - Virtual size: 230KB

.rsrc Size: 372KB - Virtual size: 368KB

UPX0
Size: - Virtual size: 268KB

UPX1
Size: 197KB - Virtual size: 200KB

.rsrc
Size: 99KB - Virtual size: 100KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 7KB

.data
Size: 328KB - Virtual size: 328KB

.rsrc
Size: 100KB - Virtual size: 99KB

UPX0
Size: - Virtual size: 1.3MB

UPX1
Size: 406KB - Virtual size: 408KB

.rsrc
Size: 353KB - Virtual size: 356KB

.text
Size: 528KB - Virtual size: 527KB

.rdata
Size: 560KB - Virtual size: 556KB

.data
Size: 60KB - Virtual size: 230KB

.rsrc
Size: 372KB - Virtual size: 368KB