f6c6407132d66f23b94fcbf6344eb955_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f6c6407132d66f23b94fcbf6344eb955_JaffaCakes118
Size

590KB
MD5

f6c6407132d66f23b94fcbf6344eb955
SHA1

56ffb6d990bcbc9413db10864803cf49632fb383
SHA256

78f7d5e57576f7b5b01dccc75e8db62b305af5c9b6566be388b015457ac55889
SHA512

696ee003768ca51d19b001e3fd339d2efe9486df9e195148d34ec267a7987ce3f451b818bc04a41d07e6228293354f4e040610368e2b42e9c0b64b7643eeb5d2
SSDEEP

12288:hxMyOjCDJRm7DIL0Zqq8x4nexiiitGRqb+7XRe2:hxMXWJcZqRniwobMRe2

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cvery.comdel8832432562/客户端/Servers.exe
unpack001/cvery.comdel8832432562/服务端/cqdl.exe

Files

f6c6407132d66f23b94fcbf6344eb955_JaffaCakes118
.rar
cvery.comdel8832432562/下载说明.htm
.html .js polyglot
cvery.comdel8832432562/客户端/Server.dcu
cvery.comdel8832432562/客户端/Server.ddp
cvery.comdel8832432562/客户端/Server.dfm
cvery.comdel8832432562/客户端/Server.pas
.js
cvery.comdel8832432562/客户端/Servers.cfg
cvery.comdel8832432562/客户端/Servers.dof
cvery.comdel8832432562/客户端/Servers.dpr
cvery.comdel8832432562/客户端/Servers.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 383KB - Virtual size: 382KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cvery.comdel8832432562/客户端/Servers.res
cvery.comdel8832432562/客户端/Unit2.dcu
cvery.comdel8832432562/客户端/Unit2.ddp
cvery.comdel8832432562/客户端/Unit2.dfm
cvery.comdel8832432562/客户端/Unit2.pas
cvery.comdel8832432562/客户端/Unit3.dcu
cvery.comdel8832432562/客户端/Unit3.ddp
cvery.comdel8832432562/客户端/Unit3.dfm
cvery.comdel8832432562/客户端/Unit3.pas
cvery.comdel8832432562/服务端/HYJQJL.FAM
cvery.comdel8832432562/服务端/HYJQJL.TV
cvery.comdel8832432562/服务端/JFSJ.MDB
cvery.comdel8832432562/服务端/JFSJ.ldb
cvery.comdel8832432562/服务端/Unit1.dcu
cvery.comdel8832432562/服务端/Unit1.ddp
cvery.comdel8832432562/服务端/Unit1.dfm
cvery.comdel8832432562/服务端/Unit1.pas
cvery.comdel8832432562/服务端/Unit10.dcu
cvery.comdel8832432562/服务端/Unit10.dfm
cvery.comdel8832432562/服务端/Unit10.pas
cvery.comdel8832432562/服务端/Unit2.dcu
cvery.comdel8832432562/服务端/Unit2.ddp
cvery.comdel8832432562/服务端/Unit2.dfm
cvery.comdel8832432562/服务端/Unit2.pas
cvery.comdel8832432562/服务端/Unit3.dcu
cvery.comdel8832432562/服务端/Unit3.ddp
cvery.comdel8832432562/服务端/Unit3.dfm
cvery.comdel8832432562/服务端/Unit3.pas
cvery.comdel8832432562/服务端/Unit4.dcu
cvery.comdel8832432562/服务端/Unit4.ddp
cvery.comdel8832432562/服务端/Unit4.dfm
cvery.comdel8832432562/服务端/Unit4.pas
cvery.comdel8832432562/服务端/Unit5.dcu
cvery.comdel8832432562/服务端/Unit5.ddp
cvery.comdel8832432562/服务端/Unit5.dfm
cvery.comdel8832432562/服务端/Unit5.pas
cvery.comdel8832432562/服务端/Unit6.dcu
cvery.comdel8832432562/服务端/Unit6.ddp
cvery.comdel8832432562/服务端/Unit6.dfm
cvery.comdel8832432562/服务端/Unit6.pas
cvery.comdel8832432562/服务端/Unit7.dcu
cvery.comdel8832432562/服务端/Unit7.ddp
cvery.comdel8832432562/服务端/Unit7.dfm
cvery.comdel8832432562/服务端/Unit7.pas
cvery.comdel8832432562/服务端/Unit8.dcu
cvery.comdel8832432562/服务端/Unit8.ddp
cvery.comdel8832432562/服务端/Unit8.dfm
cvery.comdel8832432562/服务端/Unit8.pas
cvery.comdel8832432562/服务端/Unit9.dcu
cvery.comdel8832432562/服务端/Unit9.dfm
cvery.comdel8832432562/服务端/Unit9.pas
cvery.comdel8832432562/服务端/cqdl.cfg
cvery.comdel8832432562/服务端/cqdl.dof
cvery.comdel8832432562/服务端/cqdl.dpr
cvery.comdel8832432562/服务端/cqdl.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 921KB - Virtual size: 921KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cvery.comdel8832432562/服务端/cqdl.res
cvery.comdel8832432562/说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 383KB - Virtual size: 382KB

DATA Size: 7KB - Virtual size: 7KB

BSS Size: - Virtual size: 3KB

.idata Size: 9KB - Virtual size: 8KB

.tls Size: - Virtual size: 20B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 27KB - Virtual size: 27KB

.rsrc Size: 34KB - Virtual size: 34KB

Headers

File Characteristics

Sections

CODE Size: 921KB - Virtual size: 921KB

DATA Size: 14KB - Virtual size: 13KB

BSS Size: - Virtual size: 3KB

.idata Size: 10KB - Virtual size: 10KB

.tls Size: - Virtual size: 20B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 68KB - Virtual size: 68KB

.rsrc Size: 93KB - Virtual size: 93KB

CODE
Size: 383KB - Virtual size: 382KB

DATA
Size: 7KB - Virtual size: 7KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 9KB - Virtual size: 8KB

.tls
Size: - Virtual size: 20B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 34KB - Virtual size: 34KB

CODE
Size: 921KB - Virtual size: 921KB

DATA
Size: 14KB - Virtual size: 13KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 10KB - Virtual size: 10KB

.tls
Size: - Virtual size: 20B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 93KB - Virtual size: 93KB