0df37857e982d21648aea83686258b54_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0df37857e982d21648aea83686258b54_JaffaCakes118
Size

136KB
MD5

0df37857e982d21648aea83686258b54
SHA1

63c57822021883bb3bd486bb14a6e492c653a066
SHA256

b43b7fe750cd5b6478e3c0720f48b84c1be2bbd8b20e52d94fd75ce88dfb4812
SHA512

b5267661e63aa82cf6fb151b8eb94b4bac2fb903707a5d67fd62694132c39077d4e2f187fa8cece11b1a7a2d6b67eab37b9eaa9ef4ffc1d1cb6c46d883a3ae07
SSDEEP

3072:Ekpf4O036nuiBoW7+Xb5W6q9BL53vGiSffZxdodyOw6ezYJiMhqQWY:5x30WboW7+Xbc6q9t5/5SffZxGE/01

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Nero_10_0_14_keygen.exe

Files

0df37857e982d21648aea83686258b54_JaffaCakes118
.zip
FILE_ID.DIZ
Nero_10_0_14_keygen.exe
.exe windows:5 windows x86 arch:x86

28b4e0ad939e374d1aa523e893116b10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrW
StrCmpW
StrToIntW
PathCanonicalizeW
StrFromTimeIntervalW
PathCommonPrefixW

shell32

ord147

kernel32

FreeResource
GetCommState
UnlockFileEx
SetFilePointer
CreateWaitableTimerA
FileTimeToDosDateTime
GetCommandLineW
SetFileAttributesA
LoadLibraryExW
ClearCommError
lstrcpyW
OpenSemaphoreW
GetNamedPipeInfo
CreateEventA
LoadLibraryW
GetHandleInformation

user32

GetMenu
DrawFocusRect
GetDC
SetScrollRange
DrawTextExW
DefFrameProcA
GetTopWindow
GetMenuItemID
GetWindowDC
SendDlgItemMessageA
GetWindowRect
ScreenToClient
RemovePropW
GetDlgItemInt
ScrollDC
GetMenuState
LoadCursorFromFileW
IsWindowUnicode
EnumPropsExW
DrawMenuBar
WindowFromDC
SetMenuInfo
SetCaretBlinkTime
GetSystemMetrics
IsWindowVisible
GetCaretBlinkTime
MessageBoxExA
GetKeyboardLayoutList
DefWindowProcW
EnumDisplaySettingsW
ActivateKeyboardLayout
SetMessageExtraInfo
GetWindow
SendMessageTimeoutW

gdi32

GetEnhMetaFileDescriptionW
GetRasterizerCaps
SetROP2
ChoosePixelFormat
GetCharABCWidthsW
LPtoDP
GetGraphicsMode
CreateCompatibleDC
GetWorldTransform
SetBrushOrgEx
GetLayout
SaveDC
FillPath
GetTextExtentExPointA
UpdateColors

advapi32

AddAuditAccessAce
GetAclInformation
GetCurrentHwProfileW

Exports

Exports

__GetWindowRect@12

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.exdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.secimg
Size: 1024B - Virtual size: 597B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.memo0
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c_mem
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datse
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cat.nfo

Sharing

General

Malware Config

Signatures

Files

28b4e0ad939e374d1aa523e893116b10

Headers

File Characteristics

Imports

shlwapi

shell32

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.exdata Size: 2KB - Virtual size: 2KB

.secimg Size: 1024B - Virtual size: 597B

.data Size: 512B - Virtual size: 472B

.memo0 Size: 512B - Virtual size: 48B

.c_mem Size: 3KB - Virtual size: 2KB

.datse Size: 1024B - Virtual size: 636B

.rsrc Size: 130KB - Virtual size: 129KB

.reloc Size: 1024B - Virtual size: 940B

.text
Size: 8KB - Virtual size: 8KB

.exdata
Size: 2KB - Virtual size: 2KB

.secimg
Size: 1024B - Virtual size: 597B

.data
Size: 512B - Virtual size: 472B

.memo0
Size: 512B - Virtual size: 48B

.c_mem
Size: 3KB - Virtual size: 2KB

.datse
Size: 1024B - Virtual size: 636B

.rsrc
Size: 130KB - Virtual size: 129KB

.reloc
Size: 1024B - Virtual size: 940B