048055d79316012c667a75e46f0d3d68_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

048055d79316012c667a75e46f0d3d68_JaffaCakes118
Size

524KB
MD5

048055d79316012c667a75e46f0d3d68
SHA1

811cb22092c8b2914e22c71f7b7134842ed54c1b
SHA256

f751b679ee787c476812c1f7b03c09a2b8b9f3a8534ee540463654f0130c8650
SHA512

071cb3f63345a7793ccfd9390788b1ee104fbc1fbac497478285d0bc034d377de3a32537785840c23f461b1f2b0dd534b5e0a10595385fbc4142f773b685d23c
SSDEEP

6144:kU16E4AfvOnw8myoYglaR2RDtHDkMUpbFWpz9IySlVHCwzwTSVCu69voZPBMmVc2:7qiWw82RDBMeNk

Score

1^/10

Malware Config

Signatures

Files

048055d79316012c667a75e46f0d3d68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

91be43632b8c5fed2af01816593a0e5f

Code Sign

01
Certificate

Issuer

CN=Custom satellite,O=Custom satellite launcher 2019,C=AU

Not Before

20/04/2019, 15:41

Not After

19/04/2022, 15:41

Subject

CN=Custom satellite,O=Custom satellite launcher 2019,C=AU

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

9f:f6:f6:5c:7b:8f:d3:bd:8b:ea:e3:f9:c9:18:f7:c6:c9:4a:07:b2:6f:71:a5:7c:c0:a9:de:7f:52:5a:31:f7
Signer

Actual PE Digest

9f:f6:f6:5c:7b:8f:d3:bd:8b:ea:e3:f9:c9:18:f7:c6:c9:4a:07:b2:6f:71:a5:7c:c0:a9:de:7f:52:5a:31:f7

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord694
ord698
MethCallEngine
ord517
ord666
ord595
ord522
ord523
ord631
EVENT_SINK_AddRef
ord527
ord562
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ProcCallEngine
ord645
ord647
ord574
ord685
ord100
ord617
ord619

Sections

.text
Size: 492KB - Virtual size: 490KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91be43632b8c5fed2af01816593a0e5f

Code Sign

01Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77Certificate

Extended Key Usages

Key Usages

9f:f6:f6:5c:7b:8f:d3:bd:8b:ea:e3:f9:c9:18:f7:c6:c9:4a:07:b2:6f:71:a5:7c:c0:a9:de:7f:52:5a:31:f7Signer

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 492KB - Virtual size: 490KB

.data Size: - Virtual size: 4KB

.rsrc Size: 24KB - Virtual size: 21KB

01
Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

9f:f6:f6:5c:7b:8f:d3:bd:8b:ea:e3:f9:c9:18:f7:c6:c9:4a:07:b2:6f:71:a5:7c:c0:a9:de:7f:52:5a:31:f7
Signer

.text
Size: 492KB - Virtual size: 490KB

.data
Size: - Virtual size: 4KB

.rsrc
Size: 24KB - Virtual size: 21KB