fe8f23ae23619e81376d48c8f16ff686_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fe8f23ae23619e81376d48c8f16ff686_JaffaCakes118
Size

1022KB
MD5

fe8f23ae23619e81376d48c8f16ff686
SHA1

cdd474e123f478571d21d3996382e36e0b6190e3
SHA256

2c612168eda061765ae55cabce0d18716f565c2f22d18de95ca5a18704cf1329
SHA512

baae283475983ed317f588d00a05f2e111db45a4b820434e769b3641e72b8529ce2d6241fcfe21840820eca7a8e1bb2468a71df4c4812225d19cff1bc96c04fb
SSDEEP

24576:JfDvzLRqWp8zHCz3nftAHmolzpoTC1I/Bm9OaLK:JfDvzLRHmzUtAbpGgeBm9NLK

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack002/免费SEO提升排名/WINXP和WIN7通用版/免费SEO提高排名工具.exe
unpack002/免费SEO提升排名/WINXP和WIN7通用版/清理垃圾关闭弹窗.exe
unpack002/免费SEO提升排名/WINXP版/10窗口刷IP.exe
unpack002/免费SEO提升排名/WINXP版/5窗口刷IP.exe
unpack001/点这里下载路由器自动拨号/FuckRouter.exe

Files

fe8f23ae23619e81376d48c8f16ff686_JaffaCakes118
.rar
1400.rar
.rar
免费SEO提升排名/WINXP和WIN7通用版/免费SEO提高排名工具.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
免费SEO提升排名/WINXP和WIN7通用版/免费刷IP使用帮助.url
.url
免费SEO提升排名/WINXP和WIN7通用版/清理垃圾关闭弹窗.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 10KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
免费SEO提升排名/WINXP版/10窗口刷IP.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 10KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
免费SEO提升排名/WINXP版/5窗口刷IP.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 10KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
免费SEO提升排名/WINXP版/免费刷IP使用帮助.url
.url
免费SEO提升排名/先看这说明.txt
��·��Զ��/Policy/ALCATEL SpeedTouch511e.ini
��·��Զ��/Policy/ALPHA A8.ini
��·��Զ��/Policy/ALPHA AFW-GR55 mini.ini
��·��Զ��/Policy/ALPHA K3.ini
��·��Զ��/Policy/ALPHA V4.ini
��·��Զ��/Policy/ALPHA VCE.ini
��·��Զ��/Policy/ASUS RX3041X.ini
��·��Զ��/Policy/ASUS WL530g 2.ini
��·��Զ��/Policy/ASUS WL530g.ini
��·��Զ��/Policy/AboveCable ACRT2010-11.ini
��·��Զ��/Policy/Alpha GR50.ini
��·��Զ��/Policy/Aolynk BR104.ini
��·��Զ��/Policy/Boc R460.ini
��·��Զ��/Policy/D-Link DI-504.ini
��·��Զ��/Policy/D-Link DI-524.ini
��·��Զ��/Policy/D-Link DI-524M.ini
��·��Զ��/Policy/D-Link DI-604+.ini
��·��Զ��/Policy/D-Link DI-604.ini
��·��Զ��/Policy/D-Link DI-614+.ini
��·��Զ��/Policy/D-Link DI-624+A.ini
��·��Զ��/Policy/D-Link DI-624.ini
��·��Զ��/Policy/D-Link DI-808HV.ini
��·��Զ��/Policy/D-Link DIR-100.ini
��·��Զ��/Policy/D-Link DIR-300.ini
��·��Զ��/Policy/D-Link DIR-600.ini
��·��Զ��/Policy/D-Link DIR-615 A1 1.10.ini
��·��Զ��/Policy/D-Link DIR-615.ini
��·��Զ��/Policy/FAST FR40.ini
��·��Զ��/Policy/FAST FR402.ini
��·��Զ��/Policy/HL-RT700.ini
��·��Զ��/Policy/Hi-Spider Hotel_V3.ini
��·��Զ��/Policy/HuaWei 3COM BR104.ini
��·��Զ��/Policy/HuaWei 3COM BR204+.ini
��·��Զ��/Policy/HuaWei HG520.ini
��·��Զ��/Policy/HuaWei WBR204G+.ini
��·��Զ��/Policy/HuaWei WBR204G.ini
��·��Զ��/Policy/IP-Com 11N.ini
��·��Զ��/Policy/IP-Com Soho 2.ini
��·��Զ��/Policy/IP-Com Soho 3.ini
��·��Զ��/Policy/IP-Com Soho.ini
��·��Զ��/Policy/IPTime G100R.ini
��·��Զ��/Policy/IPTime N300R.ini
��·��Զ��/Policy/KINGNET 3.1.ini
��·��Զ��/Policy/KINGNET 3.2.ini
��·��Զ��/Policy/KINGNET KN-S1060.ini
��·��Զ��/Policy/KINGNET KN-S10602.ini
��·��Զ��/Policy/KINGNET KN-S1060T.ini
��·��Զ��/Policy/KINGNET KN-WR710H.ini
��·��Զ��/Policy/LINKSYS WRT54G.ini
��·��Զ��/Policy/LINKSYS WRT54GC.ini
��·��Զ��/Policy/LinkSYS 2.00.20.ini
��·��Զ��/Policy/LinkSYS BEFSR41.ini
��·��Զ��/Policy/LinkSYS BEFW11S4.ini
��·��Զ��/Policy/LinkSYS WRK54G(2).ini
��·��Զ��/Policy/LinkSYS WRK54G.ini
��·��Զ��/Policy/Mercury MW54R.ini
��·��Զ��/Policy/Mercury Soho MR804(2).ini
��·��Զ��/Policy/Mercury Soho MR804.ini
��·��Զ��/Policy/Motorola G.ini
��·��Զ��/Policy/NetCore 2105+NR.ini
��·��Զ��/Policy/NetCore 2305NR.ini
��·��Զ��/Policy/NetCore 2505+NR.ini
��·��Զ��/Policy/NetCore 2805NR.ini
��·��Զ��/Policy/NetCore 54M2.ini
��·��Զ��/Policy/NetCore 605GR.ini
��·��Զ��/Policy/NetCore NR+205.ini
��·��Զ��/Policy/NetShare R-1200.ini
��·��Զ��/Policy/NetShare R-1800.ini
��·��Զ��/Policy/NetShare V1.005.ini
��·��Զ��/Policy/Netgear WGR614.ini
��·��Զ��/Policy/SMC SMC7004VBR.ini
��·��Զ��/Policy/TP-Link 402M.ini
��·��Զ��/Policy/TP-Link R4148.ini
��·��Զ��/Policy/TP-Link TD-8810.ini
��·��Զ��/Policy/TP-Link TD-8820.ini
��·��Զ��/Policy/TP-Link TL-R402M.ini
��·��Զ��/Policy/TP-Link TL-R410.ini
��·��Զ��/Policy/TP-Link TL-R460.ini
��·��Զ��/Policy/TP-Link TL-R860 860M.ini
��·��Զ��/Policy/TP-Link TL-R860+.ini
��·��Զ��/Policy/TP-Link TL-WR340G V5.ini
��·��Զ��/Policy/TP-Link TL-WR340G.ini
��·��Զ��/Policy/TP-Link TL-WR641G 642G.ini
��·��Զ��/Policy/TP-Link TL-WR941N TL-WR942N.ini
��·��Զ��/Policy/Tenda NAT Router.ini
��·��Զ��/Policy/Tenda R01-029.ini
��·��Զ��/Policy/Tenda Soho(2).ini
��·��Զ��/Policy/Tenda Soho.ini
��·��Զ��/Policy/Tenda TEI402.ini
��·��Զ��/Policy/Tenda TEI402M.ini
��·��Զ��/Policy/Tenda TEI480T+.ini
��·��Զ��/Policy/Tenda TEI6606.ini
��·��Զ��/Policy/Tenda TEI6608.ini
��·��Զ��/Policy/Tenda TEI6608S 2.ini
��·��Զ��/Policy/Tenda TEI6608S.ini
��·��Զ��/Policy/Tenda TEI6611S.ini
��·��Զ��/Policy/Tenda W311R.ini
��·��Զ��/Policy/Tenda W541R.ini
��·��Զ��/Policy/UCOM URS-983(2).ini
��·��Զ��/Policy/UCOM URS-983.ini
��·��Զ��/Policy/Vigor 2901.ini
��·��Զ��/Policy/Wealnet R-2804P.ini
��·��Զ��/Policy/Wealnet R-2808M.ini
点这里下载路由器自动拨号/FuckRouter.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 645KB - Virtual size: 645KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 203KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
点这里下载路由器自动拨号/Policy/Tenda TEL6608.ini
点这里下载路由器自动拨号/说明.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 1.1MB - Virtual size: 1.1MB

DATA Size: 24KB - Virtual size: 23KB

BSS Size: - Virtual size: 4KB

.idata Size: 12KB - Virtual size: 11KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 59KB - Virtual size: 58KB

.rsrc Size: 174KB - Virtual size: 174KB

Headers

File Characteristics

Sections

CODE Size: 50KB - Virtual size: 49KB

DATA Size: 5KB - Virtual size: 5KB

BSS Size: - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 2KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 7KB

Headers

File Characteristics

Sections

CODE Size: 50KB - Virtual size: 49KB

DATA Size: 5KB - Virtual size: 5KB

BSS Size: - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 2KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 7KB

Headers

File Characteristics

Sections

CODE Size: 50KB - Virtual size: 49KB

DATA Size: 5KB - Virtual size: 5KB

BSS Size: - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 2KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 7KB

Headers

File Characteristics

Sections

CODE Size: 645KB - Virtual size: 645KB

DATA Size: 13KB - Virtual size: 13KB

BSS Size: - Virtual size: 3KB

.idata Size: 10KB - Virtual size: 10KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 43KB - Virtual size: 42KB

.rsrc Size: 203KB - Virtual size: 203KB

CODE
Size: 1.1MB - Virtual size: 1.1MB

DATA
Size: 24KB - Virtual size: 23KB

BSS
Size: - Virtual size: 4KB

.idata
Size: 12KB - Virtual size: 11KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 59KB - Virtual size: 58KB

.rsrc
Size: 174KB - Virtual size: 174KB

CODE
Size: 50KB - Virtual size: 49KB

DATA
Size: 5KB - Virtual size: 5KB

BSS
Size: - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 2KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 7KB

CODE
Size: 50KB - Virtual size: 49KB

DATA
Size: 5KB - Virtual size: 5KB

BSS
Size: - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 2KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 7KB

CODE
Size: 50KB - Virtual size: 49KB

DATA
Size: 5KB - Virtual size: 5KB

BSS
Size: - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 2KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 7KB

CODE
Size: 645KB - Virtual size: 645KB

DATA
Size: 13KB - Virtual size: 13KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 10KB - Virtual size: 10KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 43KB - Virtual size: 42KB

.rsrc
Size: 203KB - Virtual size: 203KB