8409d7ad5f567a8111c5441a3860df38_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8409d7ad5f567a8111c5441a3860df38_JaffaCakes118
Size

735KB
MD5

8409d7ad5f567a8111c5441a3860df38
SHA1

a5383ced762a4a66ff3720676e15272dd7181d52
SHA256

ccf2de50388c186bbf76b7e44c5857bf51b6c4150ff80b188d32ae87466f1b16
SHA512

5b7bc7b8252a5976e5fd8a8fbec6a439641370456740cb93c610783502d6f03ab5386ce40dae546b801a81efcaa28c1d75357b9cdd6e1300c19f7342980be2e6
SSDEEP

12288:HUu9JxRFvya/mgDXZxRFvya/mgDXBxRFvya/mgDXGxRFvya/mgDXp:0OF6ADZF6ADBF6ADYF6ADp

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Autoruns.exe
unpack001/Avast_keygen.exe
unpack001/Keygen.exe
unpack001/Readme.exe

Files

8409d7ad5f567a8111c5441a3860df38_JaffaCakes118
.rar
Autoruns.exe
.exe windows:5 windows x86 arch:x86

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtUnmapViewOfSection

ws2_32

inet_ntoa
WSAStartup
inet_addr
WSAConnect
htons
WSACleanup
recv
gethostbyname
send
WSASocketA

wininet

InternetGetConnectedState

kernel32

HeapAlloc
CloseHandle
HeapFree
WriteFile
CreateFileA
SetFilePointer
GetProcessHeap
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA

user32

wvsprintfA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Avast_keygen.exe
.exe windows:5 windows x86 arch:x86

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtUnmapViewOfSection

ws2_32

inet_ntoa
WSAStartup
inet_addr
WSAConnect
htons
WSACleanup
recv
gethostbyname
send
WSASocketA

wininet

InternetGetConnectedState

kernel32

HeapAlloc
CloseHandle
HeapFree
WriteFile
CreateFileA
SetFilePointer
GetProcessHeap
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA

user32

wvsprintfA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Keygen.exe
.exe windows:5 windows x86 arch:x86

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtUnmapViewOfSection

ws2_32

inet_ntoa
WSAStartup
inet_addr
WSAConnect
htons
WSACleanup
recv
gethostbyname
send
WSASocketA

wininet

InternetGetConnectedState

kernel32

HeapAlloc
CloseHandle
HeapFree
WriteFile
CreateFileA
SetFilePointer
GetProcessHeap
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA

user32

wvsprintfA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MenuLatihan/build.xml
.xml
MenuLatihan/build/classes/menulatihan/Editor$1.class
MenuLatihan/build/classes/menulatihan/Editor$2.class
MenuLatihan/build/classes/menulatihan/Editor$3.class
MenuLatihan/build/classes/menulatihan/Editor$4.class
MenuLatihan/build/classes/menulatihan/Editor$5.class
MenuLatihan/build/classes/menulatihan/Editor$6.class
MenuLatihan/build/classes/menulatihan/Editor$7.class
MenuLatihan/build/classes/menulatihan/Editor.class
MenuLatihan/build/classes/menulatihan/Main.class
MenuLatihan/build/classes/menulatihan/Matkul1$1.class
MenuLatihan/build/classes/menulatihan/Matkul1$2.class
MenuLatihan/build/classes/menulatihan/Matkul1$3.class
MenuLatihan/build/classes/menulatihan/Matkul1$4.class
MenuLatihan/build/classes/menulatihan/Matkul1.class
MenuLatihan/build/classes/menulatihan/Mhs$1.class
MenuLatihan/build/classes/menulatihan/Mhs$2.class
MenuLatihan/build/classes/menulatihan/Mhs.class
MenuLatihan/build/classes/menulatihan/Utama$1.class
MenuLatihan/build/classes/menulatihan/Utama$2.class
MenuLatihan/build/classes/menulatihan/Utama$3.class
MenuLatihan/build/classes/menulatihan/Utama$4.class
MenuLatihan/build/classes/menulatihan/Utama.class
MenuLatihan/dist/MenuLatihan.jar
.jar
MenuLatihan/dist/README.TXT
MenuLatihan/manifest.mf
MenuLatihan/nbproject/build-impl.xml
.xml
MenuLatihan/nbproject/genfiles.properties
MenuLatihan/nbproject/private/private.properties
MenuLatihan/nbproject/private/private.xml
.xml
MenuLatihan/nbproject/project.properties
MenuLatihan/nbproject/project.xml
.xml
MenuLatihan/src/menulatihan/Editor.form
.xml
MenuLatihan/src/menulatihan/Editor.java
.java .js
MenuLatihan/src/menulatihan/Main.java
MenuLatihan/src/menulatihan/Matkul1.form
.xml
MenuLatihan/src/menulatihan/Matkul1.java
MenuLatihan/src/menulatihan/Mhs.form
.xml
MenuLatihan/src/menulatihan/Mhs.java
MenuLatihan/src/menulatihan/Utama.form
.xml
MenuLatihan/src/menulatihan/Utama.java
Readme.exe
.exe windows:5 windows x86 arch:x86

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtUnmapViewOfSection

ws2_32

inet_ntoa
WSAStartup
inet_addr
WSAConnect
htons
WSACleanup
recv
gethostbyname
send
WSASocketA

wininet

InternetGetConnectedState

kernel32

HeapAlloc
CloseHandle
HeapFree
WriteFile
CreateFileA
SetFilePointer
GetProcessHeap
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA

user32

wvsprintfA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

ws2_32

wininet

kernel32

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rsrc Size: 74KB - Virtual size: 73KB

.reloc Size: 1KB - Virtual size: 1KB

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

ws2_32

wininet

kernel32

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rsrc Size: 74KB - Virtual size: 73KB

.reloc Size: 1KB - Virtual size: 1KB

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

ws2_32

wininet

kernel32

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rsrc Size: 74KB - Virtual size: 73KB

.reloc Size: 1KB - Virtual size: 1KB

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

ws2_32

wininet

kernel32

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rsrc Size: 74KB - Virtual size: 73KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 96KB - Virtual size: 95KB

.rsrc
Size: 74KB - Virtual size: 73KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 96KB - Virtual size: 95KB

.rsrc
Size: 74KB - Virtual size: 73KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 96KB - Virtual size: 95KB

.rsrc
Size: 74KB - Virtual size: 73KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 96KB - Virtual size: 95KB

.rsrc
Size: 74KB - Virtual size: 73KB

.reloc
Size: 1KB - Virtual size: 1KB