4c01f79934061e127140ce353d6caf05_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c01f79934061e127140ce353d6caf05_JaffaCakes118
Size

192KB
MD5

4c01f79934061e127140ce353d6caf05
SHA1

c468d086e636b35009255d11271d734c87b1dddf
SHA256

46df0bb003f11bf15fbf06c9b797994cbe82ae7066eb7c4e9f28b13556cd191a
SHA512

eeac40dc5a8dce3141aa9def9a93ee6224757a18184cd2ad0ecf9e21f0c75a343063a72f3765606e2e45ff742b4b220582416832674b0e39b0c435c71ee91d8b
SSDEEP

3072:VyuP5WByQN0N/vYWN9PK+dptoPArGnODa3bibOrReVIsjJvOC82mjb1h13DBaPvX:VyXsIWNUf4apb+eReVDDLmn1h1TBaPvY

Score

7^/10

vmprotect

Malware Config

Signatures

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

resource	yara_rule
sample	vmprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c01f79934061e127140ce353d6caf05_JaffaCakes118

Files

4c01f79934061e127140ce353d6caf05_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0b6045a68db6ff1e7cfae0d225a961f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

SetWindowPos

advapi32

RegEnumKeyExA

ole32

CoTaskMemFree

oleaut32

VarUI4FromStr

comctl32

InitCommonControlsEx

Sections

.text
Size: - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.tls
Size: 4KB - Virtual size: 24B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE