fb85f7a563ea36438679c43e77c3966b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fb85f7a563ea36438679c43e77c3966b_JaffaCakes118
Size

10.0MB
MD5

fb85f7a563ea36438679c43e77c3966b
SHA1

d83fbea70e394e4afd3c6a7c899cfba89ccca96d
SHA256

41c2ef87b264becad2860e594d44e3cf1b9d0586c608a4e760ea44522074b5cd
SHA512

431ef8423ab3739c5366f14115c84bc8028862b30713813168a254f02b9e6215bfd9b36ac29c49d923cf61c5ec8670fafeea1e7e874a96e143c472a315676d67
SSDEEP

196608:4G2UJTGmkwYS9zctKmWPj/XrFxTVQ5IgiVuitWls+BerDYAvh:4PGGmgeItKnNxTVQSgiVNtV+BeHYAJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Crack/ImageEditor.exe
unpack001/ImageEditorSetup.exe

Files

fb85f7a563ea36438679c43e77c3966b_JaffaCakes118
.rar
155绿色软件站.url
.url
Crack/ImageEditor.exe
.exe windows:4 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 752KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ImageEditorSetup.exe
.exe windows:4 windows x86 arch:x86

d691a1b2bdead2333c3b1197d73f7544

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

lstrlenA
FindFirstFileA
FormatMessageA
ReadFile
CreateProcessA
GetExitCodeProcess
GetVersion
FindClose
GetDiskFreeSpaceA
GetModuleHandleA
CreateDirectoryA
MultiByteToWideChar
GetEnvironmentVariableA
GetCurrentProcess
FlushInstructionCache
HeapAlloc
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
RemoveDirectoryA
MulDiv
OutputDebugStringA
LoadLibraryExA
GetSystemDefaultLangID
GetUserDefaultLangID
EnumResourceLanguagesA
GetTempPathA
GetTempFileNameA
FindNextFileA
GetLogicalDriveStringsA
GlobalAlloc
GetSystemDirectoryA
GetWindowsDirectoryA
lstrcmpiA
GlobalMemoryStatus
CreateToolhelp32Snapshot
Process32First
Process32Next
OpenProcess
TerminateProcess
InterlockedIncrement
InterlockedDecrement
IsDBCSLeadByte
lstrcpynA
lstrlenW
CreateMutexA
GetFileAttributesA
SetFileAttributesA
CopyFileA
ExitProcess
DebugBreak
HeapSize
HeapReAlloc
HeapDestroy
LocalAlloc
GlobalFree
GlobalUnlock
GlobalLock
GetProcessHeap
GetCommandLineA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
lstrcatA
GetStartupInfoA
lstrcpyA
VirtualProtect
HeapFree
InitializeCriticalSection
DeleteCriticalSection
lstrcmpA
GetThreadLocale
GetStringTypeExA
FreeLibrary
RaiseException
GetModuleFileNameA
GetProcAddress
LoadLibraryA
ResetEvent
FlushFileBuffers
Sleep
WriteFile
MoveFileA
DeleteFileA
GetFileSize
SetFilePointer
CreateFileA
FindResourceExA
LoadResource
LockResource
SizeofResource
FindResourceA
WideCharToMultiByte
GetVersionExA
GetLocaleInfoA
GetACP
InterlockedExchange
CreateEventA
SetEvent
GetLastError
CreateThread
CloseHandle
TerminateThread
GetExitCodeThread
WaitForSingleObject
VirtualAlloc
GetSystemInfo
VirtualQuery
GetDriveTypeA
RtlUnwind

user32

GetSubMenu
LoadMenuA
TrackPopupMenu
EnableMenuItem
ExitWindowsEx
GetDC
GetSystemMetrics
SetFocus
DestroyMenu
ModifyMenuA
DefWindowProcA
CallWindowProcA
GetSystemMenu
DialogBoxParamA
LoadIconA
InvalidateRect
RedrawWindow
CreateWindowExA
RemovePropA
ScreenToClient
GetDlgCtrlID
IsWindow
PostMessageA
KillTimer
EnableWindow
SetTimer
DestroyWindow
CreateDialogParamA
PostQuitMessage
DispatchMessageA
TranslateMessage
GetMessageA
ShowWindow
GetActiveWindow
LoadStringA
SetClipboardData
EmptyClipboard
CloseClipboard
GetWindowDC
ReleaseDC
SetPropA
OpenClipboard
GetWindowLongA
SendMessageA
EndDialog
GetWindow
SystemParametersInfoA
GetWindowRect
GetPropA
LoadImageA
MessageBoxA
CopyRect
GetParent
GetClientRect
MapWindowPoints
SetWindowPos
GetDlgItem
SetWindowTextA
wvsprintfA
CharNextA
UnregisterClassA
GetDesktopWindow
IsWindowVisible
SetWindowLongA

gdi32

GetObjectA
CreateFontIndirectA
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetWindowExtEx
GetViewportExtEx
SetMapMode
GetMapMode
GetDeviceCaps
DeleteObject
GetStockObject
DeleteDC
SetBkMode

advapi32

RegQueryInfoKeyA
RegDeleteKeyA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
CloseServiceHandle
UnlockServiceDatabase
LockServiceDatabase
OpenSCManagerA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegDeleteValueA
RegOpenKeyA
RegEnumKeyExA

shell32

ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
ShellExecuteExA
SHBrowseForFolderA

ole32

CoTaskMemFree
CoInitialize
CreateStreamOnHGlobal
CoTaskMemRealloc
CoTaskMemAlloc
CoUninitialize
CoCreateInstance

oleaut32

VarUI4FromStr
OleLoadPicture

comctl32

PropertySheetA
CreatePropertySheetPageA
DestroyPropertySheetPage

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 249KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 752KB - Virtual size: 2.4MB

.rsrc Size: 6KB - Virtual size: 8KB

d691a1b2bdead2333c3b1197d73f7544

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

Sections

.text Size: 131KB - Virtual size: 131KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 249KB - Virtual size: 249KB

.text
Size: 752KB - Virtual size: 2.4MB

.rsrc
Size: 6KB - Virtual size: 8KB

.text
Size: 131KB - Virtual size: 131KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 249KB - Virtual size: 249KB