ad8f31514cd17dcdde1a77e6364400b7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ad8f31514cd17dcdde1a77e6364400b7_JaffaCakes118
Size

8.2MB
MD5

ad8f31514cd17dcdde1a77e6364400b7
SHA1

6c21c183a18d667482d6283a6c97446c2c074016
SHA256

742dcdee249b0315f05974347522ed3801ee3eb0d4a532fa59827d8f19d107d8
SHA512

2fd154220b0b7c24d63854aec885cdad74f89c8b49b7c1c6115a65d058e18066e174484fcb04ac50e37ed6ebe3a97e43043a7a5beb36a6fb54a9486a503451f8
SSDEEP

196608:vDTMmM4W6Kp+aSWqFIuFLYBDIMZUrSn2JX7AL:vDTj06oAfeZeI08L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/K-MeleonCCFME0.09Beta2V4.exe

Files

ad8f31514cd17dcdde1a77e6364400b7_JaffaCakes118
.rar
K-MeleonCCFME0.09Beta2V4.exe
.exe windows:4 windows x86 arch:x86

f581b23e276229b18b95132be4707788

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
KillTimer
SetTimer
MessageBoxW
DialogBoxParamW
DialogBoxParamA
SetWindowLongA
GetWindowLongA
GetWindowTextLengthW
GetWindowTextW
GetWindowTextLengthA
GetWindowTextA
SetWindowTextW
SetWindowTextA
SendMessageW
SendMessageA
LoadStringW
LoadStringA
CharUpperW
CharUpperA
PostMessageA
IsDlgButtonChecked
EndDialog

oleaut32

VariantClear
SysAllocString
SysFreeString

shell32

SHGetPathFromIDListA
SHGetFileInfoA
SHBrowseForFolderA
SHGetMalloc

ole32

CoInitialize
CoUninitialize

msvcrt

__p__commode
_initterm
__getmainargs
__set_app_type
_controlfp
_XcptFilter
_acmdln
exit
__dllonexit
_exit
_onexit
??1type_info@@UAE@XZ
_except_handler3
sprintf
_lrotl
memset
free
strlen
memcpy
memmove
malloc
_CxxThrowException
__CxxFrameHandler
memcmp
_purecall
__setusermatherr
_adjust_fdiv
__p__fmode

kernel32

InitializeCriticalSection
GetCommandLineW
GetVersionExA
Sleep
WaitForMultipleObjects
SetEvent
ResetEvent
EnterCriticalSection
LeaveCriticalSection
GetStdHandle
CreateEventA
GetModuleHandleW
FileTimeToSystemTime
SetEndOfFile
WriteFile
SetFileTime
ReadFile
SetFilePointer
GetFileSize
CreateFileW
CreateFileA
FindFirstFileW
FindFirstFileA
FindClose
RemoveDirectoryW
DeleteFileA
CreateDirectoryW
CreateDirectoryA
GetCurrentDirectoryW
GetCurrentDirectoryA
GetFullPathNameW
GetFullPathNameA
lstrlenA
GetStartupInfoA
FileTimeToLocalFileTime
MoveFileW
SetFileAttributesA
SetFileAttributesW
FormatMessageA
LocalFree
FormatMessageW
GetModuleFileNameA
GetModuleFileNameW
AreFileApisANSI
GetLastError
MultiByteToWideChar
GetModuleHandleA
WideCharToMultiByte
RemoveDirectoryA
MoveFileA
DeleteFileW
CloseHandle
DeleteCriticalSection
WaitForSingleObject
CreateThread
GetProcAddress
VirtualFree
VirtualAlloc

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

f581b23e276229b18b95132be4707788

Headers

File Characteristics

Imports

user32

oleaut32

shell32

ole32

msvcrt

kernel32

Sections

.text Size: 101KB - Virtual size: 101KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 2KB - Virtual size: 23KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 2KB - Virtual size: 23KB

.rsrc
Size: 5KB - Virtual size: 4KB