2f2a5545d76e83c74f105f98ceea445d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2f2a5545d76e83c74f105f98ceea445d_JaffaCakes118
Size

7.1MB
MD5

2f2a5545d76e83c74f105f98ceea445d
SHA1

d45cb75c50acc484181580bf5b583883f343e73f
SHA256

e980b0e9168fb13b5d1e000f14c3c5cd19c4dbb62f322e96096cf2a211bd154f
SHA512

1fe66f5d15eacb2546f077a53b57bdfbd7edffac88bb160b74cc50354db5dbabe95e7c4141b75d4ab4bc5d1a70029e68794b4db16754cdf6d59d2717f81d810e
SSDEEP

196608:Y0d9XRQSOvSxsCH4DpNikW2aE7i0B5imdhqnoym/yPIKRCtJvbtaVmi0:YACSSSxsCH4DpNikW2aE7iEimdhqnvUD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Alawar Generator v.2013.0.2.exe

Files

2f2a5545d76e83c74f105f98ceea445d_JaffaCakes118
.zip
Alawar Generator v.2013.0.2.zip
.zip
Alawar Generator v.2013.0.2.exe
.exe windows:4 windows x86 arch:x86

6c0c00049ce9d24b64e8452a38a16484

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetLastError
SleepEx
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetEndOfFile
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
CreateFileA
CloseHandle
FlushFileBuffers
SetStdHandle
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
ReadFile
TerminateProcess
GetCurrentProcess
SetFilePointer
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeW

user32

EndDialog
DefWindowProcA
DestroyWindow
DialogBoxParamA
BeginPaint
GetClientRect
DrawTextA
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
TranslateAcceleratorA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
PostQuitMessage

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 64.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IDATA
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

FW875V
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

V3D9EYC
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

EFPOMSO
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YGOYRW6
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

L7EYIX
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

JTOXVYS
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

GSUJ8F
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

H7VQJKC
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MBR2MGH
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

POYKA4
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

EIGT2N
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

JESCYKJ
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XZBRHO
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

HQNZBTX
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SJLWMJ
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XVCWGBG
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CSTBJO
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MYNW86
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

J540UG
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BZ2QHWV
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

NGKG9JV
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

OJEXSLX
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SBT0OLV
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KTFAHQ
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MYDJALO
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

W8BVHJ
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XSNZZOE
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VWG0QWU
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UOW9Z5K
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KBS5PDR
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TGZRRKV
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KVCWEP
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RORJKFY
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TMVGBD
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WSVGX6R
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c0c00049ce9d24b64e8452a38a16484

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 64.0MB

IDATA Size: 2.7MB - Virtual size: 2.7MB

FW875V Size: 4KB - Virtual size: 3KB

V3D9EYC Size: 4KB - Virtual size: 2KB

EFPOMSO Size: 4KB - Virtual size: 2KB

YGOYRW6 Size: 4KB - Virtual size: 2KB

L7EYIX Size: 4KB - Virtual size: 2KB

JTOXVYS Size: 4KB - Virtual size: 3KB

GSUJ8F Size: 4KB - Virtual size: 3KB

H7VQJKC Size: 4KB - Virtual size: 2KB

MBR2MGH Size: 4KB - Virtual size: 3KB

POYKA4 Size: 4KB - Virtual size: 2KB

EIGT2N Size: 4KB - Virtual size: 1KB

JESCYKJ Size: 4KB - Virtual size: 2KB

XZBRHO Size: 4KB - Virtual size: 2KB

HQNZBTX Size: 4KB - Virtual size: 3KB

SJLWMJ Size: 4KB - Virtual size: 2KB

XVCWGBG Size: 4KB - Virtual size: 2KB

CSTBJO Size: 4KB - Virtual size: 2KB

MYNW86 Size: 4KB - Virtual size: 3KB

J540UG Size: 4KB - Virtual size: 3KB

BZ2QHWV Size: 4KB - Virtual size: 2KB

NGKG9JV Size: 4KB - Virtual size: 3KB

OJEXSLX Size: 4KB - Virtual size: 3KB

SBT0OLV Size: 4KB - Virtual size: 2KB

KTFAHQ Size: 4KB - Virtual size: 2KB

MYDJALO Size: 4KB - Virtual size: 3KB

W8BVHJ Size: 4KB - Virtual size: 2KB

XSNZZOE Size: 4KB - Virtual size: 2KB

VWG0QWU Size: 4KB - Virtual size: 2KB

UOW9Z5K Size: 4KB - Virtual size: 3KB

KBS5PDR Size: 4KB - Virtual size: 3KB

TGZRRKV Size: 4KB - Virtual size: 3KB

KVCWEP Size: 4KB - Virtual size: 2KB

RORJKFY Size: 4KB - Virtual size: 2KB

TMVGBD Size: 4KB - Virtual size: 3KB

WSVGX6R Size: 4KB - Virtual size: 2KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 64.0MB

IDATA
Size: 2.7MB - Virtual size: 2.7MB

FW875V
Size: 4KB - Virtual size: 3KB

V3D9EYC
Size: 4KB - Virtual size: 2KB

EFPOMSO
Size: 4KB - Virtual size: 2KB

YGOYRW6
Size: 4KB - Virtual size: 2KB

L7EYIX
Size: 4KB - Virtual size: 2KB

JTOXVYS
Size: 4KB - Virtual size: 3KB

GSUJ8F
Size: 4KB - Virtual size: 3KB

H7VQJKC
Size: 4KB - Virtual size: 2KB

MBR2MGH
Size: 4KB - Virtual size: 3KB

POYKA4
Size: 4KB - Virtual size: 2KB

EIGT2N
Size: 4KB - Virtual size: 1KB

JESCYKJ
Size: 4KB - Virtual size: 2KB

XZBRHO
Size: 4KB - Virtual size: 2KB

HQNZBTX
Size: 4KB - Virtual size: 3KB

SJLWMJ
Size: 4KB - Virtual size: 2KB

XVCWGBG
Size: 4KB - Virtual size: 2KB

CSTBJO
Size: 4KB - Virtual size: 2KB

MYNW86
Size: 4KB - Virtual size: 3KB

J540UG
Size: 4KB - Virtual size: 3KB

BZ2QHWV
Size: 4KB - Virtual size: 2KB

NGKG9JV
Size: 4KB - Virtual size: 3KB

OJEXSLX
Size: 4KB - Virtual size: 3KB

SBT0OLV
Size: 4KB - Virtual size: 2KB

KTFAHQ
Size: 4KB - Virtual size: 2KB

MYDJALO
Size: 4KB - Virtual size: 3KB

W8BVHJ
Size: 4KB - Virtual size: 2KB

XSNZZOE
Size: 4KB - Virtual size: 2KB

VWG0QWU
Size: 4KB - Virtual size: 2KB

UOW9Z5K
Size: 4KB - Virtual size: 3KB

KBS5PDR
Size: 4KB - Virtual size: 3KB

TGZRRKV
Size: 4KB - Virtual size: 3KB

KVCWEP
Size: 4KB - Virtual size: 2KB

RORJKFY
Size: 4KB - Virtual size: 2KB

TMVGBD
Size: 4KB - Virtual size: 3KB

WSVGX6R
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 52KB - Virtual size: 51KB