ead161bb79c999874cb1478697179da8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ead161bb79c999874cb1478697179da8_JaffaCakes118
Size

1.1MB
MD5

ead161bb79c999874cb1478697179da8
SHA1

a2eca390700b61c28b881486dae0cffb549a298b
SHA256

7a3c406b456a6d340713e6dde555410025a8fac915ede6552cb3a46430c17ddf
SHA512

b3ff65dc3ea2184dc0ae3bf48e81a0fe7af96619da126958abe966d514dd9d8382779653ce1b3b5535ba1f7efa50ed0dfc0578a6d5ccaeb9a9ebbba12cf269de
SSDEEP

24576:NuI7a0r83NX/0MzfkHZ4NGQr0svxvEBRui/dXpquCY+bhuor:Yq89X/06WuFTxsP1/RpBQb7

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/23269873/client/Project1.exe
unpack001/23269873/client/client1.exe
unpack001/23269873/server/server1.exe

Files

ead161bb79c999874cb1478697179da8_JaffaCakes118
.rar
23269873/client/Project1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 330KB - Virtual size: 329KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
23269873/client/TCPthreadpas.dcu
23269873/client/TCPthreadpas.pas
23269873/client/TCPthreadpas.~pas
23269873/client/Unit1.dcu
23269873/client/client.cfg
23269873/client/client.dof
23269873/client/client.dpr
23269873/client/client.res
23269873/client/client.~dpr
23269873/client/client1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 586KB - Virtual size: 585KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 636KB - Virtual size: 636KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
23269873/client/fiveformpas.dcu
23269873/client/fiveformpas.ddp
23269873/client/fiveformpas.dfm
23269873/client/fiveformpas.pas
23269873/client/fiveformpas.~ddp
23269873/client/fiveformpas.~dfm
23269873/client/fiveformpas.~pas
23269873/client/fiveplayerpas.dcu
23269873/client/fiveplayerpas.pas
23269873/client/fiveplayerpas.~pas
23269873/client/loginformpas.dcu
23269873/client/loginformpas.ddp
23269873/client/loginformpas.dfm
23269873/client/loginformpas.pas
23269873/client/loginformpas.~ddp
23269873/client/loginformpas.~dfm
23269873/client/loginformpas.~pas
23269873/client/mainformpas.dcu
23269873/client/mainformpas.ddp
23269873/client/mainformpas.dfm
23269873/client/mainformpas.pas
23269873/client/mainformpas.~ddp
23269873/client/mainformpas.~dfm
23269873/client/mainformpas.~pas
23269873/client/myconst.dcu
23269873/client/myconst.pas
23269873/client/myconst.~pas
23269873/client/mytype.dcu
23269873/client/mytype.pas
23269873/client/mytype.~pas
23269873/server/Unit1.dcu
23269873/server/mainformpas.dcu
23269873/server/mainformpas.ddp
23269873/server/mainformpas.dfm
23269873/server/mainformpas.pas
23269873/server/mainformpas.~ddp
23269873/server/mainformpas.~dfm
23269873/server/mainformpas.~pas
23269873/server/myconst.dcu
23269873/server/myconst.pas
23269873/server/myconst.~pas
23269873/server/mytype.dcu
23269873/server/mytype.pas
23269873/server/mytype.~pas
23269873/server/server.cfg
23269873/server/server.dof
23269873/server/server.dpr
23269873/server/server.res
23269873/server/server.~dpr
23269873/server/server1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 653KB - Virtual size: 653KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
23269873/server/userdata.mdb
23269873/下载说明.htm
.html .js polyglot
23269873/网络版五子棋说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 330KB - Virtual size: 329KB

DATA Size: 4KB - Virtual size: 4KB

BSS Size: - Virtual size: 2KB

.idata Size: 8KB - Virtual size: 8KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 24KB - Virtual size: 23KB

.rsrc Size: 21KB - Virtual size: 21KB

Headers

File Characteristics

Sections

CODE Size: 586KB - Virtual size: 585KB

DATA Size: 8KB - Virtual size: 8KB

BSS Size: - Virtual size: 4KB

.idata Size: 10KB - Virtual size: 9KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 45KB - Virtual size: 45KB

.rsrc Size: 636KB - Virtual size: 636KB

Headers

File Characteristics

Sections

CODE Size: 653KB - Virtual size: 653KB

DATA Size: 9KB - Virtual size: 9KB

BSS Size: - Virtual size: 3KB

.idata Size: 9KB - Virtual size: 8KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 50KB - Virtual size: 50KB

.rsrc Size: 34KB - Virtual size: 34KB

CODE
Size: 330KB - Virtual size: 329KB

DATA
Size: 4KB - Virtual size: 4KB

BSS
Size: - Virtual size: 2KB

.idata
Size: 8KB - Virtual size: 8KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 24KB - Virtual size: 23KB

.rsrc
Size: 21KB - Virtual size: 21KB

CODE
Size: 586KB - Virtual size: 585KB

DATA
Size: 8KB - Virtual size: 8KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 10KB - Virtual size: 9KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 45KB - Virtual size: 45KB

.rsrc
Size: 636KB - Virtual size: 636KB

CODE
Size: 653KB - Virtual size: 653KB

DATA
Size: 9KB - Virtual size: 9KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 9KB - Virtual size: 8KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 50KB - Virtual size: 50KB

.rsrc
Size: 34KB - Virtual size: 34KB