b632619dd2f65af332e678d4215d4da9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b632619dd2f65af332e678d4215d4da9_JaffaCakes118
Size

32KB
MD5

b632619dd2f65af332e678d4215d4da9
SHA1

62a6473c7f78730a688aee20883b9bb3b900349b
SHA256

b19319ad9bcaa36d48c97e3f91971f2606a8693d1f7176b08a0f97c72de64fed
SHA512

d40a93b95d516b0187d032acc94c128690b9926a5c09df8f229cc5b7c880cdd8caf3d3e29baa76941bb38e2053bb334012acb9eabf192838ed3c2a44670ebb80
SSDEEP

768:5CcX0quoBcqGRAgP4s0eHu8XEUvwA05oBLQ7NOuNUViJ:1eL2BbyZIrTNHOQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/39027569/RELEASE/BPN.EXE

Files

b632619dd2f65af332e678d4215d4da9_JaffaCakes118
.rar
39027569/BPN.C
39027569/BPN.EDT
39027569/BPN.MAK
39027569/BPN.MDP
39027569/BPN.TXT
39027569/RELEASE/BPN.EXE
.exe windows:4 windows x86 arch:x86

ea875318c9d26348e8e27cc8d051886c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
HeapFree
GetLastError
CloseHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
HeapAlloc
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
WriteFile
CreateFileA
SetStdHandle
FlushFileBuffers
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetFilePointer
SetEndOfFile
ReadFile

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
39027569/下载说明.htm
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

ea875318c9d26348e8e27cc8d051886c

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 29KB - Virtual size: 29KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 14KB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 29KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 14KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB