0152209a56a27903b5a2989ab2d58c90_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0152209a56a27903b5a2989ab2d58c90_JaffaCakes118
Size

774KB
MD5

0152209a56a27903b5a2989ab2d58c90
SHA1

b6a78c20c7a717f419c0108c07edf5be80040b74
SHA256

1464fd0d649ff94d2605a23be15f98cbf34bf7de56f571b370033f2a240f565e
SHA512

2b8b7f2d3ad5227344be75d4363152773ecd4588b4895a3ff6cc7eefa0647a2c45f33288a778450e34310a526412286da4e3c9e81a2256d8782beb8e6e462ae7
SSDEEP

12288:+C67adsKMDB+0fdDQcHGq2vERec+Qk3fPRq9CMI3tGJgwP1IRGP6g:+CxOdUOr2sRecb9ZptKg

Score

1^/10

Malware Config

Signatures

Files

0152209a56a27903b5a2989ab2d58c90_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

19:35:b6:de:f2:b2:f0:94:4f:46:41:e3:16:11:17:ec
Certificate

Issuer

CN=Go project sec IT

Not Before

17/09/2020, 12:37

Not After

18/09/2030, 12:37

Subject

CN=Go project sec IT

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4f:70:f0:e6:56:36:a0:63:bf:60:9c:bd:a3:e8:e3:a7:42:e9:93:bc:fc:69:0d:01:8c:00:38:42:60:4e:a3:53
Signer

Actual PE Digest

4f:70:f0:e6:56:36:a0:63:bf:60:9c:bd:a3:e8:e3:a7:42:e9:93:bc:fc:69:0d:01:8c:00:38:42:60:4e:a3:53

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 463KB - Virtual size: 462KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 304KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

19:35:b6:de:f2:b2:f0:94:4f:46:41:e3:16:11:17:ecCertificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

4f:70:f0:e6:56:36:a0:63:bf:60:9c:bd:a3:e8:e3:a7:42:e9:93:bc:fc:69:0d:01:8c:00:38:42:60:4e:a3:53Signer

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 463KB - Virtual size: 462KB

.rsrc Size: 304KB - Virtual size: 304KB

.reloc Size: 512B - Virtual size: 12B

19:35:b6:de:f2:b2:f0:94:4f:46:41:e3:16:11:17:ec
Certificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

4f:70:f0:e6:56:36:a0:63:bf:60:9c:bd:a3:e8:e3:a7:42:e9:93:bc:fc:69:0d:01:8c:00:38:42:60:4e:a3:53
Signer

.text
Size: 463KB - Virtual size: 462KB

.rsrc
Size: 304KB - Virtual size: 304KB

.reloc
Size: 512B - Virtual size: 12B