76b6dc90614e62184a788cf0599f4ec0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

76b6dc90614e62184a788cf0599f4ec0_JaffaCakes118
Size

668KB
MD5

76b6dc90614e62184a788cf0599f4ec0
SHA1

7411b096e14c3edabb6fa282480bb6c0afd55809
SHA256

9b208bea88a166e979f639b346bdc6278959beb0032b7e5d427ab1dbcd152a09
SHA512

c6d027903a76d95d629324d002d9643df59262e062ddd622d98da3155eecf778f9abddcb9438faff97e3a7f4cc8887844101c82619cdecc7d93376307cd1cacf
SSDEEP

12288:zx42q/3bc6pslsyYJJdfcspqa4prWediavgmKykAuJmkanZmO1sZT0Fuj+v:Sr/rs7mkeLK+Hy5IxlOKT6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CrystalDiskInfo20Alpha5/DiskInfo.exe

Files

76b6dc90614e62184a788cf0599f4ec0_JaffaCakes118
.rar
CrystalDiskInfo20Alpha5/COPYRIGHT-ja.txt
CrystalDiskInfo20Alpha5/COPYRIGHT.txt
CrystalDiskInfo20Alpha5/CdiResource/dialog/About.html
CrystalDiskInfo20Alpha5/CdiResource/dialog/Graph.css
CrystalDiskInfo20Alpha5/CdiResource/dialog/Graph.html
.html .js polyglot
CrystalDiskInfo20Alpha5/CdiResource/dialog/GraphIe8.html
.html .js polyglot
CrystalDiskInfo20Alpha5/CdiResource/dialog/Main.html
.html
CrystalDiskInfo20Alpha5/CdiResource/dialog/Option.html
.js
CrystalDiskInfo20Alpha5/CdiResource/dialog/Setting.css
CrystalDiskInfo20Alpha5/CdiResource/dialog/Setting.html
CrystalDiskInfo20Alpha5/CdiResource/dialog/flot/excanvas.pack.js
.js
CrystalDiskInfo20Alpha5/CdiResource/dialog/flot/jquery.flot.pack.js
.js
CrystalDiskInfo20Alpha5/CdiResource/dialog/flot/jquery.js
.js
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/CrystalDewWorld.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/GraphAllOff.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/GraphAllOn.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/GraphReset.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/background.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/blank.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/buttonDisable.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/buttonEnable.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/buttonHover.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/file.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/graphMenuBar.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/labelDisable.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/labelEnable.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/labelUnsupported.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/nofile.png
.png
CrystalDiskInfo20Alpha5/CdiResource/dialog/image/yellow.png
.png
CrystalDiskInfo20Alpha5/CdiResource/language/Arabic.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Danish.lang
CrystalDiskInfo20Alpha5/CdiResource/language/English.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Finnish.lang
CrystalDiskInfo20Alpha5/CdiResource/language/French.lang
CrystalDiskInfo20Alpha5/CdiResource/language/German.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Hungarian.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Italian.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Japanese.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Polish.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Portuguese.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Russian.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Simplified Chinese.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Spanish.lang
CrystalDiskInfo20Alpha5/CdiResource/language/Traditional Chinese.lang
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/Main.css
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/background.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/benchmark.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskBad.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskCaution.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskGood.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskStatusBad.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskStatusCaution.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskStatusGood.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskStatusUnknown.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/diskUnknown.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/meter.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/nextDisk.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/noDisk.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/preDisk.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/temperatureBad.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/temperatureCaution.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/temperatureGood.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/classic/temperatureUnknown.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/Main.css
CrystalDiskInfo20Alpha5/CdiResource/theme/default/background.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/benchmark.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskBad.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskCaution.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskGood.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskStatusBad.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskStatusCaution.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskStatusGood.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskStatusUnknown.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/diskUnknown.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/meter.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/nextDisk.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/noDisk.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/preDisk.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/temperatureBad.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/temperatureCaution.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/temperatureGood.png
.png
CrystalDiskInfo20Alpha5/CdiResource/theme/default/temperatureUnknown.png
.png
CrystalDiskInfo20Alpha5/DiskInfo.exe
.exe windows:4 windows x86 arch:x86

f4f9b6363212ebf04af72a9304242338

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetSystemInfo
VirtualQuery
HeapReAlloc
ExitProcess
SetStdHandle
GetFileType
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
QueryPerformanceCounter
TerminateProcess
RtlUnwind
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
GetDateFormatA
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
CreateFileA
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetStartupInfoW
GetProcessHeap
HeapAlloc
HeapFree
SetErrorMode
GetFileTime
GetFileAttributesW
FileTimeToLocalFileTime
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
FileTimeToSystemTime
GetThreadLocale
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GlobalFlags
GetModuleHandleA
lstrlenA
GetCurrentProcessId
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
WideCharToMultiByte
FormatMessageW
MulDiv
RaiseException
InterlockedDecrement
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
FreeLibrary
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
lstrlenW
GlobalFree
FreeResource
LocalFree
LocalAlloc
GetCurrentThread
lstrcmpiW
GetWindowsDirectoryW
GetCurrentProcess
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
VirtualAlloc
MultiByteToWideChar
CreateFileW
DeviceIoControl
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetTickCount
VirtualFree
CreateDirectoryW
GetDiskFreeSpaceExW
GetLocalTime
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleHandleW
LoadLibraryW
WritePrivateProfileStringW
SetLastError
FindResourceW
LoadResource
LockResource
SizeofResource
GetPrivateProfileStringW
GetSystemDirectoryW
WaitForSingleObject
CreateProcessW
GetProcAddress
CloseHandle
ReleaseMutex
GetLastError
CreateMutexW
Sleep
GetPrivateProfileIntW
GetCommandLineW
GetModuleFileNameW
GetVersionExW
UnhandledExceptionFilter
GetUserDefaultLCID

user32

PostThreadMessageW
CharNextW
ReleaseCapture
SetCapture
InvalidateRgn
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
UnregisterClassW
LoadCursorW
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
DestroyMenu
GetMessageW
TranslateMessage
ValidateRect
SetCursor
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
GetKeyState
UpdateWindow
GetMenuItemID
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
EqualRect
CopyRect
PtInRect
DefWindowProcW
CallWindowProcW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetFocus
SetWindowPos
SetFocus
ShowWindow
MoveWindow
SetWindowLongW
GetDlgCtrlID
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
GetWindow
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
FillRect
TranslateAcceleratorW
LoadAcceleratorsW
AdjustWindowRect
GetWindowInfo
SetScrollRange
SetScrollPos
MessageBeep
GetNextDlgGroupItem
RegisterClipboardFormatW
GetScrollPos
wsprintfW
CharUpperW
SetWindowContextHelpId
MapWindowPoints
MapDialogRect
AppendMenuW
RemoveMenu
EnableMenuItem
ModifyMenuW
InsertMenuItemW
CreateMenu
CreatePopupMenu
TrackPopupMenu
GetCursorPos
SetForegroundWindow
RegisterDeviceNotificationW
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
GetClientRect
SendMessageW
IsWindowVisible
GetSystemMetrics
SetTimer
LoadIconW
CheckMenuRadioItem
IsIconic
RegisterWindowMessageW
GetSubMenu
PostMessageW
GetMenu
GetWindowThreadProcessId
GetWindowTextW
EnumWindows
UnregisterDeviceNotification
KillTimer
DrawMenuBar
SetMenu
CheckMenuItem
EnableWindow
GetMenuItemCount
UnregisterClassA

gdi32

GetRgnBox
GetBkColor
GetTextColor
GetMapMode
GetWindowExtEx
GetViewportExtEx
CreateSolidBrush
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
RectVisible
PtVisible
DeleteObject
SetMapMode
RestoreDC
SaveDC
CreateRectRgnIndirect
ExtTextOutW
GetDeviceCaps
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

InitializeSecurityDescriptor
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyW
FreeSid
AccessCheck
IsValidSecurityDescriptor
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
GetLengthSid
RegCreateKeyExW
AllocateAndInitializeSid
DuplicateToken
OpenProcessToken
OpenThreadToken
RegQueryValueExW
RegOpenKeyExW
CloseServiceHandle
StartServiceW
QueryServiceStatus
OpenServiceW
OpenSCManagerW
RegDeleteValueW
RegCloseKey
RegSetValueExW

shell32

CommandLineToArgvW
Shell_NotifyIconW
ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CLSIDFromProgID
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CoTaskMemAlloc
OleIsCurrentClipboard
OleUninitialize
CoTaskMemFree
CoSetProxyBlanket
CoUninitialize
CoCreateInstance
CoInitializeSecurity
CoInitialize
OleFlushClipboard
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SafeArrayCreate
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnaccessData
SysStringLen
LoadRegTypeLi
DispCallFunc
VariantCopy
VariantChangeType
VariantClear
SysAllocString
SysAllocStringLen
SysFreeString
VariantInit

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Sections

.text
Size: 436KB - Virtual size: 432KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 292KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CrystalDiskInfo20Alpha5/manual-en.chm
.chm
CrystalDiskInfo20Alpha5/manual-ja.chm
.chm
CrystalDiskInfo20Alpha5/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

f4f9b6363212ebf04af72a9304242338

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

version

Sections

.text Size: 436KB - Virtual size: 432KB

.rdata Size: 112KB - Virtual size: 109KB

.data Size: 16KB - Virtual size: 35KB

.rsrc Size: 292KB - Virtual size: 288KB

.text
Size: 436KB - Virtual size: 432KB

.rdata
Size: 112KB - Virtual size: 109KB

.data
Size: 16KB - Virtual size: 35KB

.rsrc
Size: 292KB - Virtual size: 288KB