ae45503304b8cf8595f638502ad6e198_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ae45503304b8cf8595f638502ad6e198_JaffaCakes118
Size

655KB
MD5

ae45503304b8cf8595f638502ad6e198
SHA1

3632d7529a04b772d8afa2c860a8840a60591c5f
SHA256

74151a4a05d1a29998f44f91a723ca65bf6d0a0a2c2c8ddbc9769802f7e5063d
SHA512

f2095403d3e714dd06000639136c548e44851555444aad8a604c9aa0b71a456a99fe19bce6c5325f5d7bacdd1a5e3de311811b6b71859149064892b77b40b80a
SSDEEP

12288:JbOiknl1SSTcDiH9e290+5rE/pcmE1rwKYH5gtvIX0AhpT+MDznDslAw091TV:Jaiol9cKc+5VMgwT7DzDsleTV

Score

1^/10

Malware Config

Signatures

Files

ae45503304b8cf8595f638502ad6e198_JaffaCakes118
.dll windows:5 windows x86 arch:x86

b847579d04cebbf7f743d30a8dbeffba

Code Sign

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/08/2009, 01:00

Not After

08/08/2024, 01:00

Subject

CN=WoSign Time Stamping Signer,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

46:c1:8f:66:01:63:3d:ae:52:ff:d9:a4:fa:16:2f:40
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

19/11/2013, 00:00

Not After

09/02/2017, 23:59

Subject

CN=BEIJING QIYI CENTURY SCIENCE&TECHNOLOGY CO.\,LTD.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=TECHNOLOGY PRODUCTS DEPARTMENT,O=BEIJING QIYI CENTURY SCIENCE&TECHNOLOGY CO.\,LTD.,L=BEIJING,ST=BEIJING,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

36:03:f6:2f:17:6d:5f:29:c1:43:aa:4c:0b:e2:f7:8c:9b:e1:29:2b
Signer

Actual PE Digest

36:03:f6:2f:17:6d:5f:29:c1:43:aa:4c:0b:e2:f7:8c:9b:e1:29:2b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\SVN\PPS_UI\PPS5\branch_5.1.9.x\pub\bin\Publish\QyPopWndDll.pdb

Imports

ws2_32

gethostname
gethostbyname
ntohl
ntohs
htonl
htons
accept
connect
getpeername
getsockname
listen
recvfrom
recv
sendto
send
bind
socket
setsockopt
ioctlsocket
WSACreateEvent
__WSAFDIsSet
select
freeaddrinfo
getaddrinfo
WSAEventSelect
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
WSAResetEvent
WSASetEvent
WSACloseEvent
WSAGetLastError
closesocket
WSACleanup
WSAStartup
inet_addr

imagehlp

MakeSureDirectoryPathExists

apppluginbase

??0CDefaultService@@QAE@XZ
??1IClientProxy@@UAE@XZ
??_7IClientProxy@@6B@
?SendToPeer@CPluginProxyBase@@QAEXPAVCIpcData@@@Z
?SendToPeerAndWait@CPluginProxyBase@@QAEPAVCIpcData@@PAV2@K@Z
?SendToPeerWithCallback@CPluginProxyBase@@QAEXPAVCIpcData@@AAV?$Callback@$$A6AXPAVCIpcData@@@Z@base@@@Z
??0CDefaultProxyService@@QAE@XZ
??1CDefaultProxyService@@UAE@XZ
?Subscribe@CDefaultProxyService@@UAEXPB_WAAVCPluginDelegateBase@@@Z
?UnSubscribe@CDefaultProxyService@@UAEXPB_WAAVCPluginDelegateBase@@@Z
?FireEvent@CDefaultProxyService@@UAE_NPB_WPAX@Z
?IsUIPlugin@IPlugin@@UAE_NXZ
?DestoryPluginEntry@CDefaultProxyService@@UAEXXZ
?ProcessRemoteEvent@IPlugin@@UAEPAUsEventInfo@@PAVCIpcData@@@Z
?OnLoad@CDefaultProxyService@@UAE_NXZ
?OnCmdline@CDefaultProxyService@@UAEXPB_W@Z
?SetAttribute@CDefaultProxyService@@UAEXPB_W0@Z
?GetWeakRef@CDefaultProxyService@@UAE?AVWeakReference@internal@base@@XZ
?NativeCall@CDefaultProxyService@@UAEPBDPBD0@Z
??1IServerProcessor@@UAE@XZ
??_7IServerProcessor@@6B@
??1CDefaultService@@UAE@XZ
??1IProcessorFactory@@UAE@XZ
??_7IProcessorFactory@@6B@
?Subscribe@CDefaultService@@UAEXPB_WAAVCPluginDelegateBase@@@Z
?UnSubscribe@CDefaultService@@UAEXPB_WAAVCPluginDelegateBase@@@Z
?FireEvent@CDefaultService@@UAE_NPB_WPAX@Z
?DestoryPluginEntry@CDefaultService@@UAEXXZ
?GetWeakRef@CDefaultService@@UAE?AVWeakReference@internal@base@@XZ
?NativeCall@CDefaultService@@UAEPBDPBD0@Z
??0scoped_pluginptr@@QAE@XZ
??1scoped_pluginptr@@QAE@XZ
?get@scoped_pluginptr@@QAEPAVIPlugin@@XZ
??4scoped_pluginptr@@QAEAAV0@ABV0@@Z
?GetPlugin@CServiceManager@@QAE?AVscoped_pluginptr@@PBDPAVIPluginHost@@PB_W@Z
?GetInstance@CServiceManager@@SAPAV1@XZ
??0scoped_pluginptr@@QAE@ABV0@@Z
?MainProcessIsRunning@CServiceManager@@QAE_NXZ
??0scoped_pluginptr@@QAE@PAVIPlugin@@_N@Z
??Cscoped_pluginptr@@QBEPAVIPlugin@@XZ

gbase

??0LogMessage@logging@@QAE@PBDHH@Z
?GetMinLogLevel@logging@@YAHXZ
?get_dcheck_state@logging@@YA?AW4DcheckState@1@XZ
??0WeakReferenceOwner@internal@base@@QAE@XZ
??0CallbackBase@internal@base@@QAE@ABV012@@Z
??0WeakPtrBase@internal@base@@QAE@ABV012@@Z
?is_valid@WeakReference@internal@base@@QBE_NXZ
?Release@Lock@base@@QAEXXZ
?lock@WeakPtrBase@internal@base@@QBEPBVLock@3@XZ
?Acquire@Lock@base@@QAEXXZ
??0CallbackBase@internal@base@@IAE@PAVBindStateBase@12@@Z
??0RefCountedThreadSafeBase@subtle@base@@IAE@XZ
??0WeakPtrBase@internal@base@@IAE@ABVWeakReference@12@@Z
??1RefCountedThreadSafeBase@subtle@base@@IAE@XZ
?SetOnNeedThreadSafe@WeakReferenceOwner@internal@base@@QAEXXZ
??1WeakReference@internal@base@@QAE@XZ
?GetRef@WeakReferenceOwner@internal@base@@QBE?AVWeakReference@23@XZ
??1WeakReferenceOwner@internal@base@@QAE@XZ
??1WeakPtrBase@internal@base@@QAE@XZ
??1CallbackBase@internal@base@@IAE@XZ
??1LogMessage@logging@@QAE@XZ

mfc100u

ord7524
ord2629
ord285
ord5264
ord2614
ord11494
ord280
ord1310
ord4511
ord2064
ord2068
ord266
ord7624
ord7548
ord11784
ord13854
ord4744
ord2164
ord11476
ord11477
ord13381
ord7108
ord13387
ord8530
ord3684
ord3625
ord11864
ord7126
ord1739
ord14162
ord10976
ord13267
ord11469
ord7179
ord13570
ord13567
ord13572
ord13569
ord13571
ord13568
ord3416
ord5261
ord11228
ord11236
ord7391
ord9498
ord11240
ord1312
ord2407
ord8613
ord2085
ord782
ord4360
ord2756
ord7976
ord3491
ord8347
ord9333
ord5143
ord11159
ord2852
ord2951
ord2952
ord11116
ord2339
ord5276
ord12557
ord10725
ord7871
ord13388
ord7109
ord13382
ord2665
ord3992
ord14067
ord3999
ord4416
ord4383
ord4379
ord4413
ord11209
ord11845
ord4642
ord4923
ord5115
ord11838
ord4901
ord5118
ord4645
ord4794
ord4623
ord4434
ord4392
ord4421
ord4430
ord4400
ord4404
ord4408
ord4396
ord5556
ord2980
ord2981
ord4425
ord4388
ord1519
ord1512
ord1514
ord1508
ord1501
ord11244
ord11246
ord12724
ord6931
ord6932
ord6922
ord4792
ord7393
ord9328
ord8346
ord6140
ord4086
ord7176
ord1292
ord890
ord6869
ord286
ord4290
ord902
ord296
ord1298
ord1300
ord11801
ord1479
ord4512
ord12616
ord462
ord1010
ord5056
ord10984
ord12022
ord11296
ord293
ord265
ord2062
ord12153
ord869
ord1270
ord12801
ord4151
ord11683
ord3879
ord322
ord13605
ord1905
ord1934
ord3397
ord9524
ord12394
ord5074
ord7929
ord12951
ord6710
ord6671
ord6667
ord10058
ord8179
ord788
ord1212
ord8483
ord13208
ord2853
ord8393
ord10045
ord6247
ord11163
ord8112
ord13380
ord10937
ord3402
ord11081
ord6156
ord13047
ord8277
ord14060
ord3627
ord10412
ord11123
ord8143
ord14059
ord14132
ord9897
ord7366
ord1301
ord323
ord1873
ord14149
ord14145
ord14147
ord14148
ord14146
ord2417
ord7385
ord2884
ord2885
ord290
ord11333
ord5231
ord10960
ord979
ord421
ord4789
ord2346
ord4902
ord5308
ord379
ord947
ord377
ord6343
ord7913
ord7914
ord4785
ord3526
ord7291
ord5077
ord6917
ord6925
ord11483
ord1687
ord2404
ord4147
ord13202
ord4921
ord4849
ord5575
ord13189
ord11765
ord9353
ord8618
ord1945
ord3932
ord13352
ord7065
ord13043
ord5049
ord12992
ord908
ord2091
ord2055
ord2053
ord2080
ord1984
ord2045
ord3413
ord408
ord1953
ord2090
ord2088
ord12606

msvcr100

srand
_itow
_itoa
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_except_handler4_common
_vsnprintf
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
?terminate@@YAXXZ
_onexit
_lock
__dllonexit
_unlock
wcsstr
_waccess
vfprintf
wcschr
iswspace
_wcslwr_s
_ultoa
vswprintf_s
wcsnlen
wmemcpy_s
_vscwprintf
_memicmp
strtol
strstr
printf
_errno
vsprintf_s
_vscprintf
strnlen
memmove_s
memcpy_s
memchr
isalnum
isspace
__RTDynamicCast
fclose
_stat64i32
fopen
_snprintf_s
fflush
__iob_func
fprintf
strpbrk
malloc
sprintf
__CxxFrameHandler3
_CxxThrowException
memset
memcpy
_strdup
tolower
_ctime64
_gmtime64
sscanf
atol
atoi
_localtime64_s
_mktime64
sprintf_s
_wtoi
calloc
_recalloc
_time64
rand
free
wcsrchr
wcsncpy
_purecall
_stricmp
memmove
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABV01@@Z

kernel32

CloseHandle
CreateThread
TerminateThread
QueryPerformanceFrequency
QueryPerformanceCounter
InterlockedIncrement
InterlockedDecrement
CreateEventW
ResetEvent
SetEvent
TlsGetValue
TlsSetValue
RaiseException
WaitForSingleObject
SetThreadLocale
ResumeThread
SetThreadPriority
TlsFree
TlsAlloc
CreateToolhelp32Snapshot
GetSystemInfo
LocalFree
Process32NextW
GetCurrentThreadId
GetPrivateProfileSectionNamesW
FindResourceExW
FindResourceW
LoadResource
SizeofResource
InitializeCriticalSection
GlobalMemoryStatus
GetDiskFreeSpaceExW
GetDriveTypeW
DeviceIoControl
GetFileAttributesW
CreateDirectoryW
HeapSize
GetLogicalDriveStringsW
GetModuleHandleW
GlobalFree
FreeLibrary
GetProcAddress
LoadLibraryW
SetProcessWorkingSetSize
LoadLibraryA
Process32FirstW
GetCurrentProcess
GetLocalTime
MultiByteToWideChar
lstrlenA
OutputDebugStringA
GetLastError
WideCharToMultiByte
lstrlenW
GetTickCount
HeapAlloc
GetModuleFileNameW
HeapFree
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetVersionExW
WaitForMultipleObjects
GetModuleFileNameA
GlobalAlloc
CreateFileW
Sleep
UnmapViewOfFile
MapViewOfFile
OpenFileMappingW
LocalAlloc
OutputDebugStringW
EncodePointer
DecodePointer
InterlockedExchange
InterlockedCompareExchange
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentProcessId
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetProcessHeap
HeapDestroy
HeapReAlloc
InitializeCriticalSectionAndSpinCount
ExpandEnvironmentStringsA
LockResource
HeapSetInformation

user32

PostThreadMessageW
FindWindowW
IsWindowVisible
SystemParametersInfoW
CallWindowProcW
SetWindowLongW
EnableWindow
wsprintfW
GetSystemMetrics
GetWindowThreadProcessId
GetShellWindow
SetTimer
BringWindowToTop
SetForegroundWindow
SetActiveWindow
FindWindowExW
LoadCursorW
SetCursor
ShowWindow
ClientToScreen
PtInRect
GetWindowRect
IsIconic
GetClientRect
SendMessageW
LoadIconW
PostMessageW
KillTimer
GetDesktopWindow
SetWindowPos

advapi32

RegOpenKeyExW
RegCloseKey
RegOpenKeyExA
RegCreateKeyW
RegSetValueExW
RegOpenKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegQueryValueExW

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHGetMalloc

shlwapi

PathFileExistsW

ole32

CoCreateGuid
CoInitializeEx

oleaut32

VariantCopy
SysFreeString
SysAllocString
VariantClear

msvcp100

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1_Container_base12@std@@QAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
??_7ios_base@std@@6B@
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Xout_of_range@std@@YAXPBD@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?_Xlength_error@std@@YAXPBD@Z

wininet

InternetSetCookieA

netapi32

Netbios

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

d3d9

Direct3DCreate9

iphlpapi

GetAdaptersInfo

pthreadvc2

pthread_mutex_unlock
pthread_join
pthread_cancel
pthread_self
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_equal

ssleay32

ord175
ord24
ord48
ord8
ord151
ord6
ord21
ord43
ord58
ord74
ord45
ord5
ord141
ord83
ord314
ord15
ord110
ord75
ord183
ord172
ord222
ord169
ord108
ord12
ord235
ord341
ord78
ord158
ord96
ord17

libeay32

ord1015
ord2075
ord1958
ord1018
ord581
ord1654
ord1653
ord1017
ord298
ord227
ord224
ord2604
ord84
ord3212
ord3205
ord223
ord657

Exports

Exports

CreatePlugin
CreateProxy

Sections

.text
Size: 371KB - Virtual size: 370KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b847579d04cebbf7f743d30a8dbeffba

Code Sign

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4cCertificate

Extended Key Usages

Key Usages

46:c1:8f:66:01:63:3d:ae:52:ff:d9:a4:fa:16:2f:40Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

36:03:f6:2f:17:6d:5f:29:c1:43:aa:4c:0b:e2:f7:8c:9b:e1:29:2bSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

imagehlp

apppluginbase

gbase

mfc100u

msvcr100

kernel32

user32

advapi32

shell32

shlwapi

ole32

oleaut32

msvcp100

wininet

netapi32

version

d3d9

iphlpapi

pthreadvc2

ssleay32

libeay32

Exports

Exports

Sections

.text Size: 371KB - Virtual size: 370KB

.rdata Size: 110KB - Virtual size: 110KB

.data Size: 7KB - Virtual size: 9KB

.rsrc Size: 119KB - Virtual size: 119KB

.reloc Size: 41KB - Virtual size: 40KB

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

46:c1:8f:66:01:63:3d:ae:52:ff:d9:a4:fa:16:2f:40
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

36:03:f6:2f:17:6d:5f:29:c1:43:aa:4c:0b:e2:f7:8c:9b:e1:29:2b
Signer

.text
Size: 371KB - Virtual size: 370KB

.rdata
Size: 110KB - Virtual size: 110KB

.data
Size: 7KB - Virtual size: 9KB

.rsrc
Size: 119KB - Virtual size: 119KB

.reloc
Size: 41KB - Virtual size: 40KB