3e707b70eeebd6d04ff651db37978c59_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3e707b70eeebd6d04ff651db37978c59_JaffaCakes118
Size

3.2MB
MD5

3e707b70eeebd6d04ff651db37978c59
SHA1

476748749d12b5dcad7a83b16bcfd980f926cd88
SHA256

2748dd4d5018568c226287ae0979dbe94aa9aa2e5801066d3c5e6eb8e5627423
SHA512

d092f91949fd7a32eaab6f704d2437ccb991c51fd3f3b6292cf42cf3205db7ed1092c7d70511d429e270e124d9d10ce6f8f556798d38b8bcbfe98489325221eb
SSDEEP

98304:fa+3M+3b+3QChVHkWFXQmEhZ7XD2unlBO:fH9AQChVH7FXeXSR

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack001/冰天加速1.41免费版/BTJS1.41.exe
unpack001/冰天加速1.41免费版/ptdll.dll
unpack001/冰天加速1.43免费版/ntdll.dll
unpack001/冰天加速1.43免费版/ptdll.dll
unpack001/冰天加速1.43免费版/冰天加速1.43.exe

Files

3e707b70eeebd6d04ff651db37978c59_JaffaCakes118
.rar
冰天加速1.41免费版/BTJS1.41.exe
.exe windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

LoadLi
Size: 4KB - Virtual size: 1830.1MB

Size: 2.3MB - Virtual size: 4B

��
Size: - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
冰天加速1.41免费版/pfsz.dat
冰天加速1.41免费版/ptdll.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

OIU
RemovePropW
UNOIU

Sections

PEP0
Size: - Virtual size: 892KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEP1
Size: 296KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
冰天加速1.41免费版/使用方法.txt
冰天加速1.43免费版/ntdll.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

OIU
RemovePropW
UNOIU

Sections

PEP0
Size: - Virtual size: 892KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEP1
Size: 296KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
冰天加速1.43免费版/pfsz.dat
冰天加速1.43免费版/ptdll.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

OIU
RemovePropW
UNOIU

Sections

PEP0
Size: - Virtual size: 892KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEP1
Size: 296KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
冰天加速1.43免费版/使用方法.txt
冰天加速1.43免费版/冰天加速1.43.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 573KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 417KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CJBT
Size: 559KB - Virtual size: 560KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
破解说明.txt
访问零度软件园获取更多资源.url

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

LoadLi Size: 4KB - Virtual size: 1830.1MB

Size: 2.3MB - Virtual size: 4B

���� Size: - Virtual size:

Headers

File Characteristics

Exports

Exports

Sections

PEP0 Size: - Virtual size: 892KB

PEP1 Size: 296KB - Virtual size: 304KB

Headers

File Characteristics

Exports

Exports

Sections

PEP0 Size: - Virtual size: 892KB

PEP1 Size: 296KB - Virtual size: 304KB

Headers

File Characteristics

Exports

Exports

Sections

PEP0 Size: - Virtual size: 892KB

PEP1 Size: 296KB - Virtual size: 304KB

Headers

File Characteristics

Sections

Size: 573KB - Virtual size: 1.1MB

Size: 417KB - Virtual size: 436KB

Size: - Virtual size: 12KB

.rsrc Size: 26KB - Virtual size: 28KB

Size: - Virtual size: 2.6MB

.CJBT Size: 559KB - Virtual size: 560KB

LoadLi
Size: 4KB - Virtual size: 1830.1MB

��
Size: - Virtual size:

PEP0
Size: - Virtual size: 892KB

PEP1
Size: 296KB - Virtual size: 304KB

PEP0
Size: - Virtual size: 892KB

PEP1
Size: 296KB - Virtual size: 304KB

PEP0
Size: - Virtual size: 892KB

PEP1
Size: 296KB - Virtual size: 304KB

.rsrc
Size: 26KB - Virtual size: 28KB

.CJBT
Size: 559KB - Virtual size: 560KB