63320c01873190a3d93d5178aca25909_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

63320c01873190a3d93d5178aca25909_JaffaCakes118
Size

183KB
MD5

63320c01873190a3d93d5178aca25909
SHA1

ffcc19c935629da6a0e363c9b6c9472cc4c28228
SHA256

15b9b3f88baf58bc61a88fd30148cd12d7e4e2cfbb27c347b72ad1a949fce6a1
SHA512

a0c91d066ebb2a948a7692e5910d8da5720ea3ea9ab098b168db856d2ab100b3b0b1e265341a70c4f46adc39a3849231bf0d64afd3c20caff2620af6e497d498
SSDEEP

3072:3GMTJno2x/TDlSwx5UsbfNOagLnhd128rSlRcOGrzwodswQlQujHyoQwKQEsCWJ:37JooHlSgKyQpdOkxfwoPwQiUWJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/346457764/Waves.exe

Files

63320c01873190a3d93d5178aca25909_JaffaCakes118
.rar
346457764/Geometry.pas
.js
346457764/Main.dfm
346457764/Main.pas
.js
346457764/OpenGL.pas
346457764/Waves.dof
346457764/Waves.dpr
346457764/Waves.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 127KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
346457764/Waves.res
346457764/smoothing.gif
.gif
346457764/下载说明.htm
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 127KB - Virtual size: 276KB

DATA Size: 2KB - Virtual size: 4KB

BSS Size: - Virtual size: 12KB

.idata Size: 3KB - Virtual size: 8KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 24KB

.rsrc Size: 6KB - Virtual size: 16KB

.data Size: 4KB - Virtual size: 4KB

CODE
Size: 127KB - Virtual size: 276KB

DATA
Size: 2KB - Virtual size: 4KB

BSS
Size: - Virtual size: 12KB

.idata
Size: 3KB - Virtual size: 8KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 24KB

.rsrc
Size: 6KB - Virtual size: 16KB

.data
Size: 4KB - Virtual size: 4KB