280c1b92228be892d831d4477cba4cd7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

280c1b92228be892d831d4477cba4cd7_JaffaCakes118
Size

367KB
MD5

280c1b92228be892d831d4477cba4cd7
SHA1

b8fefec1063e24f3f617594317891bd4519a2441
SHA256

ef51fdbf8748284e88a5349d41190fa393b744539af469e612cb9adf5fa41e8d
SHA512

13793ff102ce4a2daf8cc5f506c3bae6147d5ce2b5b62c9e27ee97217eb6fbda041fac22de4008b1c70d62b074c1d28b9b177123c4d93b0605a8fa82aaef34e1
SSDEEP

6144:EGIlhY09lr3msgQeB7gQN1Z4DYfgpxh2L+3nVohEMYC5HmzwKTDUoV75hp9s0jM:Q7YsDmswB7gbh2LeVoOwCl9VfpWh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/200631415543327/iamgood_yzsbm/验证码识别/Project1.exe

Files

280c1b92228be892d831d4477cba4cd7_JaffaCakes118
.rar
200631415543327/iamgood_yzsbm/Thumbs.db
200631415543327/iamgood_yzsbm/验证码识别/BMP1/1.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/10.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/11.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/12.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/13.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/14.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/15.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/16.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/17.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/18.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/19.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/2.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/20.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/21.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/22.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/3.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/4.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/5.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/6.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/7.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/8.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/9.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP1/Thumbs.db
200631415543327/iamgood_yzsbm/验证码识别/BMP1/中国共享软件注册中心作者登录附加码识别特征码
200631415543327/iamgood_yzsbm/验证码识别/BMP1/复件 10.bmp
200631415543327/iamgood_yzsbm/验证码识别/BMP2/1.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/10.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/11.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/12.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/13.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/14.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/15.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/16.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/17.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/18.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/19.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/2.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/20.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/21.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/22.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/23.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/24.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/3.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/4.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/5.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/6.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/7.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/8.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/9.gif
200631415543327/iamgood_yzsbm/验证码识别/BMP2/Thumbs.db
200631415543327/iamgood_yzsbm/验证码识别/BMP2/腾讯QQ登录附加码识别特征码
200631415543327/iamgood_yzsbm/验证码识别/Project1.dpr
200631415543327/iamgood_yzsbm/验证码识别/Project1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
200631415543327/iamgood_yzsbm/验证码识别/Project1.res
200631415543327/iamgood_yzsbm/验证码识别/Unit1.dcu
200631415543327/iamgood_yzsbm/验证码识别/Unit1.dfm
200631415543327/iamgood_yzsbm/验证码识别/Unit1.pas
200631415543327/iamgood_yzsbm/验证码识别/bmp3/1.gif
.gif
200631415543327/iamgood_yzsbm/验证码识别/bmp3/Thumbs.db
200631415543327/iamgood_yzsbm/验证码识别/deltemp.bat
200631415543327/iamgood_yzsbm/验证码识别/temp/0-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/0-11.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/0-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/0-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/0-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/0-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/0-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/0-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-11.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/1-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/10-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/10-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/10-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/10-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/10-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/10-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/10-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/11-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/11-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/11-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/11-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/11-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/11-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-11.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/2-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-11.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/3-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/4-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/4-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/4-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/4-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/4-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/4-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/4-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/5-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/5-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/5-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/5-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/5-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/5-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/5-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/6-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/6-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/6-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/6-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/6-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/6-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/6-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/7-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/7-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/7-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/7-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/7-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/7-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/7-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/8-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/8-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/8-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/8-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/8-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/8-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/8-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/9-10.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/9-4.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/9-5.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/9-6.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/9-7.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/9-8.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/9-9.BMP
200631415543327/iamgood_yzsbm/验证码识别/temp/Thumbs.db
200631415543327/iamgood_yzsbm/验证码识别/temp/test.htm
200631415543327/iamgood_yzsbm/验证码识别/test
200631415543327/下载说明.htm
.html .js polyglot
200631415543327/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 512KB - Virtual size: 512KB

DATA Size: 7KB - Virtual size: 7KB

BSS Size: - Virtual size: 3KB

.idata Size: 9KB - Virtual size: 8KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 30KB - Virtual size: 30KB

.rsrc Size: 35KB - Virtual size: 35KB

CODE
Size: 512KB - Virtual size: 512KB

DATA
Size: 7KB - Virtual size: 7KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 9KB - Virtual size: 8KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 30KB - Virtual size: 30KB

.rsrc
Size: 35KB - Virtual size: 35KB