49f2b672049119ea6d170fee8a8bc426_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49f2b672049119ea6d170fee8a8bc426_JaffaCakes118
Size

354KB
MD5

49f2b672049119ea6d170fee8a8bc426
SHA1

988f19c1af6b1c50b0894a9f0000c68880ef4970
SHA256

93658d961a2a1bd06f68a4472476c5a51691a2a237286e39f45af68dd77c1518
SHA512

a7a0d44f08d7fd30027006d48dc0153cc884b6bb41c621fbbf77603b8bab9a3496e3f0e709d688e6cf48be2d1c4c5e7a6b2e8f254418a4d42116f5d3267d486d
SSDEEP

6144:DxsdLoEVv3SaHtdnJ6rcvaLNu0bzTdYxZJfVVqQ9JPn8zOnjZl76:9KLo2PDH96XZHbNYx/fqOISZl76

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Smartphoneware.Best.Crypto.v4.00/keygen.exe

Files

49f2b672049119ea6d170fee8a8bc426_JaffaCakes118
.zip
Smartphoneware.Best.Crypto.v4.00/Home.url
.url
Smartphoneware.Best.Crypto.v4.00/Info.jpg
.jpg
Smartphoneware.Best.Crypto.v4.00/Shop.url
.url
Smartphoneware.Best.Crypto.v4.00/best_crypto_s3_s60_3_and_5_v_4_00_sw.sisx
Smartphoneware.Best.Crypto.v4.00/keygen.exe
.exe windows:5 windows x86 arch:x86

7395111e5bce9934bc57f5d712fd2a21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

comctl32

ord17

user32

GetWindowLongW

gdi32

SetBkColor

advapi32

RegCreateKeyExW

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

Sections

.text
Size: 26KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE