06071c1811d4e1ccfd0c6c3b55ca0bb8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

06071c1811d4e1ccfd0c6c3b55ca0bb8_JaffaCakes118
Size

468KB
MD5

06071c1811d4e1ccfd0c6c3b55ca0bb8
SHA1

478c2dce4631430834ef6ef7f8e7a2afbb8255b9
SHA256

86765db57b65aef75bdf15e3fb2dd5e2bc060c156db61768bd31ea0529cb6a2b
SHA512

874d4fbd56da272b567d8161e9ac2c9da23a9429aa8fe7c96829d058215297cf2ec1a8a8b6e2511def6f2d7d6862912c65433bca307704be6baa41a626ee6497
SSDEEP

12288:ElFOi3sL16zJdhZDptwtt/Hchr7reQFJy6:8FOiW6zJdXDp6tt/HchfreuJy6

Score

1^/10

Malware Config

Signatures

Files

06071c1811d4e1ccfd0c6c3b55ca0bb8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1e7cefa34b370a696dde6190f0528569

Code Sign

01
Certificate

Issuer

CN=Loops quantum,O=Ocean Loops quantum 2019,C=DE

Not Before

22/04/2019, 16:39

Not After

21/04/2022, 16:39

Subject

CN=Loops quantum,O=Ocean Loops quantum 2019,C=DE

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ca:2b:0c:e0:a8:eb:31:e2:11:81:cf:9e:55:17:2e:13:a5:3f:1e:40:77:2d:aa:84:0a:08:bf:3e:a5:37:a1:ee
Signer

Actual PE Digest

ca:2b:0c:e0:a8:eb:31:e2:11:81:cf:9e:55:17:2e:13:a5:3f:1e:40:77:2d:aa:84:0a:08:bf:3e:a5:37:a1:ee

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord589
MethCallEngine
ord517
ord598
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord713
ord608
ProcCallEngine
ord100
ord614
ord617
ord618
ord581

Sections

.text
Size: 448KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e7cefa34b370a696dde6190f0528569

Code Sign

01Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77Certificate

Extended Key Usages

Key Usages

ca:2b:0c:e0:a8:eb:31:e2:11:81:cf:9e:55:17:2e:13:a5:3f:1e:40:77:2d:aa:84:0a:08:bf:3e:a5:37:a1:eeSigner

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 448KB - Virtual size: 446KB

.data Size: - Virtual size: 15KB

.rsrc Size: 12KB - Virtual size: 11KB

01
Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

ca:2b:0c:e0:a8:eb:31:e2:11:81:cf:9e:55:17:2e:13:a5:3f:1e:40:77:2d:aa:84:0a:08:bf:3e:a5:37:a1:ee
Signer

.text
Size: 448KB - Virtual size: 446KB

.data
Size: - Virtual size: 15KB

.rsrc
Size: 12KB - Virtual size: 11KB