277f2705f290ecfb12b63cc5332564c4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

277f2705f290ecfb12b63cc5332564c4_JaffaCakes118
Size

307KB
MD5

277f2705f290ecfb12b63cc5332564c4
SHA1

4abc45e38ef7d6a6a714b52e6d99727e7b048658
SHA256

21112b335b1a7c4d02bf9f9dfc6c87ae50d1cb6bafd234ad6df128f7c1952e1e
SHA512

3eff0f110c6b3430b86080652b9c20e3a2e81a4e0d0e7465ee681b1fe6b260892818a7ab24ec03a69a95ec06e986425ae0ee60c469f4e0e91b0b7cb36e7b2b37
SSDEEP

6144:zftn6CYntZnAsGdX4UsOdPBmZZvwEMHKRlQ5hJBJDfgLo1Ote+mL:rF6XAxN4UsOdP0fwE7o5hJDfgLXc+c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/20057155592755/bomber.exe

Files

277f2705f290ecfb12b63cc5332564c4_JaffaCakes118
.rar
20057155592755/Unit1.dcu
20057155592755/Unit1.dfm
20057155592755/Unit1.pas
.js
20057155592755/bmp/Thumbs.db
20057155592755/bmp/back1.bmp
20057155592755/bmp/blow.bmp
20057155592755/bmp/bomb.bmp
20057155592755/bmp/build.bmp
20057155592755/bmp/levelch.bmp
20057155592755/bmp/losewin.bmp
20057155592755/bmp/plane1.bmp
20057155592755/bomber.cfg
20057155592755/bomber.dof
20057155592755/bomber.dpr
20057155592755/bomber.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 332KB - Virtual size: 332KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 44KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
20057155592755/bomber.res
20057155592755/dxlib/DDUtil.pas
20057155592755/dxlib/DXCommon.dcu
20057155592755/dxlib/DXCommon.pas
20057155592755/dxlib/DirectDraw.pas
.js
20057155592755/dxlib/ddutil.dcu
20057155592755/dxlib/directdraw.dcu
20057155592755/下载说明.htm
.html .js polyglot
20057155592755/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 332KB - Virtual size: 332KB

DATA Size: 4KB - Virtual size: 4KB

BSS Size: - Virtual size: 44KB

.idata Size: 8KB - Virtual size: 7KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 23KB - Virtual size: 23KB

.rsrc Size: 21KB - Virtual size: 21KB

CODE
Size: 332KB - Virtual size: 332KB

DATA
Size: 4KB - Virtual size: 4KB

BSS
Size: - Virtual size: 44KB

.idata
Size: 8KB - Virtual size: 7KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 23KB - Virtual size: 23KB

.rsrc
Size: 21KB - Virtual size: 21KB