cf540fcfef8f993a9c5b17b86735a141_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

cf540fcfef8f993a9c5b17b86735a141_JaffaCakes118
Size

162KB
MD5

cf540fcfef8f993a9c5b17b86735a141
SHA1

e414c8560b57d432419a2a90b01abd15bce7cc4a
SHA256

1c10ef5e33f2701a7544221e32b90047dd14e46e5a4eb6a08944a827c134d0be
SHA512

ffc2adfcc24760ba74ddf705635e3239f96c8c36fb216e2c0d42097eec7e36c96046f2916011fd526e295993e31b2cbba4a6442b845d6a203c31bf6740086ad9
SSDEEP

3072:oT0ir0uG+HQyv9hMcRxM9UNbr0Qq666YGk2a3dZY/bUmoih9UR:oT0ir6EQyvwcRxcUfnkZugmozR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Office.Software.Microsoft.Of.serial.keygen.by.TSRh.exe

Files

cf540fcfef8f993a9c5b17b86735a141_JaffaCakes118
.zip
FILE_ID.DIZ
Office.Software.Microsoft.Of.serial.keygen.by.TSRh.exe
.exe windows:5 windows x86 arch:x86

0ff33c307d8adf967edbd80c382c1a56

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_llseek
_lclose
OutputDebugStringW
_lread
_lwrite
_lcreat
_lopen
GetProfileIntW
GlobalLock
GlobalAlloc
lstrcmpW
GlobalUnlock
GlobalFree
LocalUnlock
LocalLock
GetSystemDefaultLangID
FindResourceW
LoadResource
RaiseException
SetEnvironmentVariableA
CompareStringW
CompareStringA
HeapSize
VirtualAlloc
InitializeCriticalSectionAndSpinCount
HeapReAlloc
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
RtlUnwind
HeapAlloc
OpenFile
LeaveCriticalSection
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
HeapCreate
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
Sleep
GetTimeZoneInformation
WideCharToMultiByte
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
GetTempFileNameW
LocalFree
DeleteFileW
OutputDebugStringA
LocalAlloc
VirtualQuery
MoveFileW
GetCurrentDirectoryW
LocalReAlloc
lstrcpyW
lstrcatW
lstrlenW
GetProfileStringW
lstrcpyA
GetTempPathA
CloseHandle
GetModuleHandleA
FindAtomA
LoadLibraryA
GetProcAddress
GetLastError
lstrcatA
WriteFile
lstrlenA
lstrcmpA
EnterCriticalSection
ExitProcess

user32

GetSystemMenu
IsDialogMessageW
GetWindowTextW
PeekMessageW
CreateDialogParamW
InvertRect
SetCaretPos
SetTimer
RegisterWindowMessageW
LoadCursorW
LoadAcceleratorsW
LoadStringW
LoadBitmapW
CreateWindowExW
RegisterClassW
GetSystemMetrics
CharUpperA
TranslateAcceleratorW
GetMessageW
IsIconic
TranslateMessage
GetActiveWindow
DispatchMessageW
GetScrollRange
DrawTextW
AnyPopup
GetUpdateRect
OffsetRect
ScrollWindow
ShowWindow
GetScrollPos
GetDC
GetDlgItemInt
MessageBeep
CharNextA
CharPrevA
SetDlgItemInt
GetDlgItem
CheckDlgButton
IsDlgButtonChecked
CheckRadioButton
MessageBoxW
GetDlgItemTextW
SetDlgItemTextW
EnableWindow
GetKeyState
DialogBoxParamW
LoadIconW
GetWindowLongW
ReleaseDC
HiliteMenuItem
EndDialog
SendDlgItemMessageW
FlashWindow
FillRect
GetSysColor
SendMessageW
EndPaint
DestroyWindow
SetCursor
CloseClipboard
HideCaret
PostQuitMessage
PostMessageW
IsWindowEnabled
GetClientRect
SetFocus
ShowCaret
EnumClipboardFormats
BeginPaint
SetScrollRange
GetMenu
InvalidateRect
SetScrollPos
EnableMenuItem
DestroyCaret
CreateCaret
OpenClipboard
UpdateWindow
WinHelpW
DefWindowProcW
CheckMenuItem
MoveWindow
ClientToScreen
GetWindowRect
GetFocus
wsprintfA
InflateRect
GetCursorPos
EqualRect
IsWindowVisible
SetWindowTextW

shell32

ShellAboutW

shlwapi

SHGetValueA

gdi32

DeleteObject
SetBkMode
PatBlt
GetDeviceCaps
DeleteDC
SelectObject
UnrealizeObject
SetBkColor
TextOutW
BitBlt
GetObjectW
CreateCompatibleDC
GetTextMetricsW
Ellipse
LineTo
Escape
CreateDCW
GetStockObject
CreateSolidBrush
SetTextColor
GetBkColor
GetBkMode

comdlg32

GetSaveFileNameW
PrintDlgW
GetOpenFileNameW

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TSRh.nfo

Sharing

General

Malware Config

Signatures

Files

0ff33c307d8adf967edbd80c382c1a56

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

shlwapi

gdi32

comdlg32

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 109KB - Virtual size: 115KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 109KB - Virtual size: 115KB

.rsrc
Size: 17KB - Virtual size: 16KB