0229d555a23c2d017c7f7a767cd73754_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0229d555a23c2d017c7f7a767cd73754_JaffaCakes118
Size

1.7MB
MD5

0229d555a23c2d017c7f7a767cd73754
SHA1

9f70bc79ca6d5f46cc49b1697ad7ef25d5954e54
SHA256

9009fa95ea818d8dd7f2441b763837b366c11ffec529423a4723ae8becdb43d7
SHA512

cdf4393ad49b44e041fda9c2be60e822ee2cad5059e48ac5ea57e6f4c79d148762e11b2190c28730e16a0e7349d4f1df868a8bb13880cdfbaa4677f1b9e1f9a8
SSDEEP

24576:mnLWRPaEC4UR4n9r48zzE32Xlr8unz1IiSfFr9bVEg/TCfhp0fCrwH8Ut+5vmwqG:QYURGr44E3klrGikrvEJp0fbHd8dqO/V

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/client/client.exe
unpack001/server/server.exe

Files

0229d555a23c2d017c7f7a767cd73754_JaffaCakes118
.rar
client/client.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 997KB - Virtual size: 996KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 9KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 708KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
client/client.ini
client/新云软件.url
.url
server/data.mdb
server/server.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 9KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 535KB - Virtual size: 535KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 997KB - Virtual size: 996KB

DATA Size: 13KB - Virtual size: 12KB

BSS Size: - Virtual size: 9KB

.idata Size: 11KB - Virtual size: 10KB

.tls Size: - Virtual size: 20B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 64KB - Virtual size: 64KB

.rsrc Size: 708KB - Virtual size: 708KB

Headers

File Characteristics

Sections

CODE Size: 2.0MB - Virtual size: 2.0MB

DATA Size: 19KB - Virtual size: 18KB

BSS Size: - Virtual size: 9KB

.idata Size: 13KB - Virtual size: 12KB

.tls Size: - Virtual size: 20B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 131KB - Virtual size: 130KB

.rsrc Size: 535KB - Virtual size: 535KB

CODE
Size: 997KB - Virtual size: 996KB

DATA
Size: 13KB - Virtual size: 12KB

BSS
Size: - Virtual size: 9KB

.idata
Size: 11KB - Virtual size: 10KB

.tls
Size: - Virtual size: 20B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 64KB - Virtual size: 64KB

.rsrc
Size: 708KB - Virtual size: 708KB

CODE
Size: 2.0MB - Virtual size: 2.0MB

DATA
Size: 19KB - Virtual size: 18KB

BSS
Size: - Virtual size: 9KB

.idata
Size: 13KB - Virtual size: 12KB

.tls
Size: - Virtual size: 20B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 131KB - Virtual size: 130KB

.rsrc
Size: 535KB - Virtual size: 535KB