943182c76d56869e130f4b989f4d61b1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

943182c76d56869e130f4b989f4d61b1_JaffaCakes118
Size

535KB
MD5

943182c76d56869e130f4b989f4d61b1
SHA1

89565495859d43028d62090cee2575a365e20cd4
SHA256

18172e4e2f75318b86d2cc1ddc02e4f914841d96c3a8451f888b132db9fe35a1
SHA512

b7aaff91ef8e785f393a5d7c2953fa217a8bf0bbfc7696a3390939c0e18a922e84a512edbb2d62015ffcd585c04788b478aec9d2d009079941f10f10df4686bf
SSDEEP

12288:ej43+TZKx4rQTxHxXOYXB0OHU3QeH04jibHoOZ3wfsAKlnU7TfAyeysdm:q4eZKPTxH1OQSOHUr1jYH1BAKlno7An6

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack002/FdPicLib.dll
unpack002/Project4.exe

Files

943182c76d56869e130f4b989f4d61b1_JaffaCakes118
.rar
newasp200611361630721.rar
.zip
ArccPic.pas
BmpFuns.pas
Bmps/1.bmp
Bmps/1.fdf
Bmps/10.bmp
Bmps/10.fdf
Bmps/2.bmp
Bmps/2.fdf
Bmps/3.bmp
Bmps/3.fdf
Bmps/4.bmp
Bmps/4.fdf
Bmps/5.bmp
Bmps/5.fdf
Bmps/6.bmp
Bmps/6.fdf
Bmps/7.bmp
Bmps/7.fdf
Bmps/8.bmp
Bmps/8.fdf
Bmps/9.bmp
Bmps/9.fdf
Bmps/test.bmp
Bmps/test.fdf
CircPic.pas
CurvePic.pas
Delmp.bat
FdPicLib.cfg
FdPicLib.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ShowFreeDrawImageForm

Sections

CODE
Size: 459KB - Virtual size: 458KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 85B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FdPicLib.dof
FdPicLib.dpr
FdPicLib.res
FreePicU.dfm
FreePicU.pas
LinePic.pas
PicBase.pas
PicConst.pas
PicCur.res
PicFuns.pas
PolyPic.pas
Project4.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 307KB - Virtual size: 306KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
RectPic.pas
RounPic.pas
SetLineW.dfm
SetLineW.pas
ShowImgU.dfm
ShowImgU.pas
TextPic.pas
下载说明.htm
.html .js polyglot
新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 459KB - Virtual size: 458KB

DATA Size: 5KB - Virtual size: 4KB

BSS Size: - Virtual size: 4KB

.idata Size: 9KB - Virtual size: 9KB

.edata Size: 512B - Virtual size: 85B

.reloc Size: 31KB - Virtual size: 31KB

.rsrc Size: 56KB - Virtual size: 56KB

Headers

File Characteristics

Sections

CODE Size: 307KB - Virtual size: 306KB

DATA Size: 4KB - Virtual size: 4KB

BSS Size: - Virtual size: 2KB

.idata Size: 8KB - Virtual size: 7KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 22KB - Virtual size: 21KB

.rsrc Size: 21KB - Virtual size: 21KB

CODE
Size: 459KB - Virtual size: 458KB

DATA
Size: 5KB - Virtual size: 4KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 9KB - Virtual size: 9KB

.edata
Size: 512B - Virtual size: 85B

.reloc
Size: 31KB - Virtual size: 31KB

.rsrc
Size: 56KB - Virtual size: 56KB

CODE
Size: 307KB - Virtual size: 306KB

DATA
Size: 4KB - Virtual size: 4KB

BSS
Size: - Virtual size: 2KB

.idata
Size: 8KB - Virtual size: 7KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 22KB - Virtual size: 21KB

.rsrc
Size: 21KB - Virtual size: 21KB