8480bf487a222b1a3dfa290cc959886e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8480bf487a222b1a3dfa290cc959886e_JaffaCakes118
Size

3.9MB
MD5

8480bf487a222b1a3dfa290cc959886e
SHA1

3c0a4d2cbe27cfcc71b38a135e1cd47773c0c3dd
SHA256

522b5b574af26b6882a450a342bf99b2abdc3f7478ede1073f8bc4dafc3dcc98
SHA512

2e41f85dffef01d6bd809653bfb06dd457617ab0a115db4857c4c9d439d348728d3a72c2af61b4403d3bfc195a1cbfef15b4023b2e57cd43c0b4e9d28479fe52
SSDEEP

98304:Pyp/SFH+m20Fv6/5Ed30WaBQ4xExyZlFTfpjtwiawO73SS+gP:PySFHo0Fvw5iNEfx9l5NPOjKgP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Lol 辰诺无限视距V1.9.exe

Files

8480bf487a222b1a3dfa290cc959886e_JaffaCakes118
.rar
Lol 辰诺无限视距V1.9.exe
.exe windows:4 windows x86 arch:x86

75246aa49f97f9f572a8b9cfe2e6ff76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamClose

ws2_32

accept

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

kernel32

InterlockedDecrement

user32

LoadStringA

gdi32

GetTextMetricsA

winspool.drv

OpenPrinterA

comdlg32

GetSaveFileNameA

advapi32

RegCreateKeyExA

shell32

Shell_NotifyIconA

ole32

OleInitialize

oleaut32

UnRegisterTypeLi

comctl32

ImageList_Destroy

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 544KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 976KB - Virtual size: 976KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
QQ截图20160817142949.png
.png
效果图.png
.png

Sharing

General

Malware Config

Signatures

Files

75246aa49f97f9f572a8b9cfe2e6ff76

Headers

File Characteristics

Imports

winmm

ws2_32

msvfw32

avifil32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

msvcrt

iphlpapi

psapi

Sections

.text Size: 544KB - Virtual size: 1.1MB

.sedata Size: 976KB - Virtual size: 976KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 16KB - Virtual size: 16KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 544KB - Virtual size: 1.1MB

.sedata
Size: 976KB - Virtual size: 976KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 16KB - Virtual size: 16KB

.sedata
Size: 4KB - Virtual size: 4KB