Static task
static1
Behavioral task
behavioral1
Sample
thuthuat.chiplove.biz - winrar crack/Keygen.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
thuthuat.chiplove.biz - winrar crack/Keygen.exe
Resource
win10v2004-20240709-en
General
-
Target
69d337dd3e31f32714cf21d45d8eb250_JaffaCakes118
-
Size
199KB
-
MD5
69d337dd3e31f32714cf21d45d8eb250
-
SHA1
91839dbd81e3e8d492c5410e6f85777408b13a84
-
SHA256
08fd3d6d77787f64663d19abb0201f6786698ff1926ac5c130be51218d1f4f6a
-
SHA512
6713533ef67e4e0f0221560596b0b846a19a0b64920a54c269d1d36e0352092f85ff7d5296e4360c4599f651a46794f44ae19f0f8ae04e5d00655bece11e7dc1
-
SSDEEP
6144:5+i2uyR9E81YWBTG2m5uKIGQaDoFABtK2b9qN4+Zo:5yK8KW5m5dtDQABt2O+a
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/thuthuat.chiplove.biz - winrar crack/Keygen.exe
Files
-
69d337dd3e31f32714cf21d45d8eb250_JaffaCakes118.zip
-
thuthuat.chiplove.biz - winrar crack/FFF.NFO
-
thuthuat.chiplove.biz - winrar crack/FILE_ID.DIZ
-
thuthuat.chiplove.biz - winrar crack/Keygen.exe.exe windows:5 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 190KB - Virtual size: 356KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
thuthuat.chiplove.biz - winrar crack/rarreg.key