76a11553cda9ab950f8e9af1849a433b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

76a11553cda9ab950f8e9af1849a433b_JaffaCakes118
Size

303KB
MD5

76a11553cda9ab950f8e9af1849a433b
SHA1

757b4c67e04222b90629958ee3e30de89f624606
SHA256

2c04819a5f1156349bfee141e4dde62999aa29b71aa6f80199c8ff84bdcaf9ad
SHA512

0b5cf6dea4cbfd4872511d87464923f3ecd63cf9bb8bf1f6c715aaad2d62c32fd2a692a5a0186986f781bd31d4f20b5328e7ee11a22a5ea390edba8e3afa87da
SSDEEP

6144:vOB5SuFJxT46RRSQ0pgcbWfIRJxXPzJHo9KTTXiT0cfl0O5UzlLGO0ml+hMSa:wlJp46RUQ01xXt5iOzlr9l+qSa

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cvery.comdel710535477635/密码注册器/GD_SoftRegedit.exe
unpack001/cvery.comdel710535477635/软件注册/GD_SoftRegedit.exe

Files

76a11553cda9ab950f8e9af1849a433b_JaffaCakes118
.rar
cvery.comdel710535477635/下载说明.htm
.html .js polyglot
cvery.comdel710535477635/密码注册器/GD_SoftRegedit.cfg
cvery.comdel710535477635/密码注册器/GD_SoftRegedit.dof
cvery.comdel710535477635/密码注册器/GD_SoftRegedit.dpr
cvery.comdel710535477635/密码注册器/GD_SoftRegedit.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 399KB - Virtual size: 398KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cvery.comdel710535477635/密码注册器/GD_SoftRegedit.res
cvery.comdel710535477635/密码注册器/GD_SoftRegedit.~dpr
cvery.comdel710535477635/密码注册器/UnitSoftKeyMain.dcu
cvery.comdel710535477635/密码注册器/UnitSoftKeyMain.ddp
cvery.comdel710535477635/密码注册器/UnitSoftKeyMain.dfm
cvery.comdel710535477635/密码注册器/UnitSoftKeyMain.pas
cvery.comdel710535477635/密码注册器/UnitSoftKeyMain.~ddp
cvery.comdel710535477635/密码注册器/UnitSoftKeyMain.~dfm
cvery.comdel710535477635/密码注册器/UnitSoftKeyMain.~pas
cvery.comdel710535477635/密码注册器/UnitkeyCryptClass.dcu
cvery.comdel710535477635/密码注册器/UnitkeyCryptClass.pas
cvery.comdel710535477635/软件注册/GD_SoftRegedit.cfg
cvery.comdel710535477635/软件注册/GD_SoftRegedit.dof
cvery.comdel710535477635/软件注册/GD_SoftRegedit.dpr
cvery.comdel710535477635/软件注册/GD_SoftRegedit.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 428KB - Virtual size: 427KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cvery.comdel710535477635/软件注册/GD_SoftRegedit.res
cvery.comdel710535477635/软件注册/GD_SoftRegedit.~dpr
cvery.comdel710535477635/软件注册/K8.ICO
cvery.comdel710535477635/软件注册/SystemSet.ini
cvery.comdel710535477635/软件注册/UnitSoftKeyClass.dcu
cvery.comdel710535477635/软件注册/UnitSoftKeyClass.pas
cvery.comdel710535477635/软件注册/UnitSoftKeyClass.~pas
cvery.comdel710535477635/软件注册/UnitSoftRegedit.dcu
cvery.comdel710535477635/软件注册/UnitSoftRegedit.ddp
cvery.comdel710535477635/软件注册/UnitSoftRegedit.dfm
cvery.comdel710535477635/软件注册/UnitSoftRegedit.pas
cvery.comdel710535477635/软件注册/UnitSoftRegedit.~ddp
cvery.comdel710535477635/软件注册/UnitSoftRegedit.~dfm
cvery.comdel710535477635/软件注册/UnitSoftRegedit.~pas
cvery.comdel710535477635/软件注册/UnitkeyCryptClass.dcu
cvery.comdel710535477635/软件注册/UnitkeyCryptClass.pas

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 399KB - Virtual size: 398KB

DATA Size: 5KB - Virtual size: 5KB

BSS Size: - Virtual size: 3KB

.idata Size: 8KB - Virtual size: 8KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 29KB - Virtual size: 29KB

.rsrc Size: 31KB - Virtual size: 31KB

Headers

File Characteristics

Sections

CODE Size: 428KB - Virtual size: 427KB

DATA Size: 6KB - Virtual size: 5KB

BSS Size: - Virtual size: 3KB

.idata Size: 8KB - Virtual size: 8KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 32KB - Virtual size: 31KB

.rsrc Size: 38KB - Virtual size: 38KB

CODE
Size: 399KB - Virtual size: 398KB

DATA
Size: 5KB - Virtual size: 5KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 8KB - Virtual size: 8KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 29KB - Virtual size: 29KB

.rsrc
Size: 31KB - Virtual size: 31KB

CODE
Size: 428KB - Virtual size: 427KB

DATA
Size: 6KB - Virtual size: 5KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 8KB - Virtual size: 8KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 32KB - Virtual size: 31KB

.rsrc
Size: 38KB - Virtual size: 38KB