d9e10e4f28a256154642176cf95e0d23_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d9e10e4f28a256154642176cf95e0d23_JaffaCakes118
Size

1.6MB
MD5

d9e10e4f28a256154642176cf95e0d23
SHA1

b7be21372bf55ed6665622ff253e82d7af757dfe
SHA256

bd3f5fa59387460be665af546f24fd6c5954f98d9d0e0b509a40bd07082140f6
SHA512

9942dfef564298d1984d28be1586221240ec903e3d4c9e93eeeafd18c362d582d3252501cdc55bd2e87d1dcd2b33cdded56f4abe689aa97fde0debabef0a42eb
SSDEEP

49152:8gLkFCaVhE4YnkD13nKa6B79WHsl+OYf6LNiJP7:8gLSVe4Y8NnKF19WMlW6BK7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cvery.comdel630423426772/jeans.exe

Files

d9e10e4f28a256154642176cf95e0d23_JaffaCakes118
.rar
cvery.comdel630423426772/16-Batch File.ico
cvery.comdel630423426772/Acrobat.ico
cvery.comdel630423426772/BEIDE.ICO
cvery.comdel630423426772/BESCROLL.ICO
cvery.comdel630423426772/Bebo4.ico
cvery.comdel630423426772/Bebul.ico
cvery.comdel630423426772/Bekal.ico
cvery.comdel630423426772/Bemag.ico
cvery.comdel630423426772/Besou.ico
cvery.comdel630423426772/CHECK2~1.ICO
cvery.comdel630423426772/CONTROL.ICO
cvery.comdel630423426772/Control Panel.ico
cvery.comdel630423426772/DataManager.dcu
cvery.comdel630423426772/DataManager.ddp
cvery.comdel630423426772/DataManager.dfm
cvery.comdel630423426772/DataManager.pas
cvery.comdel630423426772/Dreamweaver1.ico
cvery.comdel630423426772/FlashMPEG.ico
cvery.comdel630423426772/HTMLDOC.ICO
cvery.comdel630423426772/Key1.ico
cvery.comdel630423426772/MAIN.ICO
cvery.comdel630423426772/MYBOOK.ICO
cvery.comdel630423426772/Media Player.ico
cvery.comdel630423426772/NOTE12.ICO
cvery.comdel630423426772/OE Orange.ico
cvery.comdel630423426772/Opera.ico
cvery.comdel630423426772/Orb Red.ico
cvery.comdel630423426772/Orb Yellow.ico
cvery.comdel630423426772/PADDLE~1.ICO
cvery.comdel630423426772/Paint Shop Pro.ico
cvery.comdel630423426772/Photo-Paint XP Icon.ico
cvery.comdel630423426772/Photoshop6.ico
cvery.comdel630423426772/Quicktime5.ico
cvery.comdel630423426772/SPECS.ICO
cvery.comdel630423426772/Serials 2000.ico
cvery.comdel630423426772/Setup Information INF.ico
cvery.comdel630423426772/The Playa.ico
cvery.comdel630423426772/Video.ico
cvery.comdel630423426772/Winace.ico
cvery.comdel630423426772/Windows Explorer.ico
cvery.comdel630423426772/Xbox.ico
cvery.comdel630423426772/about.dcu
cvery.comdel630423426772/about.ddp
cvery.comdel630423426772/about.dfm
cvery.comdel630423426772/about.pas
cvery.comdel630423426772/backup.mdb
cvery.comdel630423426772/boots.ico
cvery.comdel630423426772/data.mdb
cvery.comdel630423426772/dataform.dcu
cvery.comdel630423426772/dataform.ddp
cvery.comdel630423426772/dataform.dfm
cvery.comdel630423426772/dataform.pas
cvery.comdel630423426772/desk accessoires-1.ico
cvery.comdel630423426772/desk-4.ico
cvery.comdel630423426772/document blank.ico
cvery.comdel630423426772/documents & settings folder.ico
cvery.comdel630423426772/file_excel.ico
cvery.comdel630423426772/find.dcu
cvery.comdel630423426772/find.ddp
cvery.comdel630423426772/find.dfm
cvery.comdel630423426772/find.pas
cvery.comdel630423426772/input.dcu
cvery.comdel630423426772/input.ddp
cvery.comdel630423426772/input.dfm
cvery.comdel630423426772/input.pas
.js
cvery.comdel630423426772/jeans.cfg
cvery.comdel630423426772/jeans.dof
cvery.comdel630423426772/jeans.dpr
cvery.comdel630423426772/jeans.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 951KB - Virtual size: 950KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 340KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cvery.comdel630423426772/jeans.res
cvery.comdel630423426772/login.dcu
cvery.comdel630423426772/login.ddp
cvery.comdel630423426772/login.dfm
cvery.comdel630423426772/login.pas
cvery.comdel630423426772/magnifying-glass.ico
cvery.comdel630423426772/main.dcu
cvery.comdel630423426772/main.ddp
cvery.comdel630423426772/main.dfm
cvery.comdel630423426772/main.pas
.js
cvery.comdel630423426772/mess.dcu
cvery.comdel630423426772/mess.ddp
cvery.comdel630423426772/mess.dfm
cvery.comdel630423426772/mess.pas
cvery.comdel630423426772/msbinder.ico
cvery.comdel630423426772/printer.ico
cvery.comdel630423426772/vssver.scc
cvery.comdel630423426772/windows washer.ico
cvery.comdel630423426772/xToon Icon 10.ico
cvery.comdel630423426772/xToon Icon 13.ico
cvery.comdel630423426772/xToon Icon 15.ico
cvery.comdel630423426772/下载说明.htm
.html .js polyglot
cvery.comdel630423426772/阅读器下载.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 951KB - Virtual size: 950KB

DATA Size: 14KB - Virtual size: 13KB

BSS Size: - Virtual size: 3KB

.idata Size: 10KB - Virtual size: 9KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 68KB - Virtual size: 67KB

.rsrc Size: 340KB - Virtual size: 340KB

CODE
Size: 951KB - Virtual size: 950KB

DATA
Size: 14KB - Virtual size: 13KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 10KB - Virtual size: 9KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 68KB - Virtual size: 67KB

.rsrc
Size: 340KB - Virtual size: 340KB