08d7f8917124e24bfae13830b95c4e0b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

08d7f8917124e24bfae13830b95c4e0b_JaffaCakes118
Size

292KB
MD5

08d7f8917124e24bfae13830b95c4e0b
SHA1

c3a12bafa9caa17c7d030422004aedcada0ae285
SHA256

a4aa89e5831ad68f7281cc912cc609ab8e7a9881469dcbb3a1d35fb61a65a4db
SHA512

8df64127bf8abc654ef49da6ca059adc7781338bfef220ccfb46c80518250f408434cce2a026f04ad41e6a134aa5ea6c23dd1e52af1456e7b8e33721bc870b6f
SSDEEP

6144:2qxMzLugpKElflVJc/SYn2WCH49lnDeONg5uZ3EQDncedn:2qxMzLugfljcvNCqlDet5uZUon

Score

1^/10

Malware Config

Signatures

Files

08d7f8917124e24bfae13830b95c4e0b_JaffaCakes118
.dll windows:6 windows x64 arch:x64

Code Sign

2b:6c:4c:e9:a4:04:70:47:b2:b1:ad:41:05:1b:98:6b
Certificate

Issuer

CN=WUS!

Not Before

01/07/2014, 08:00

Not After

01/01/2088, 08:00

Subject

CN=WUS!

23:d9:34:ae:1c:e2:0c:d0:5a:82:86:7d:42:a1:fa:b6:e7:f7:59:a1
Signer

Actual PE Digest

23:d9:34:ae:1c:e2:0c:d0:5a:82:86:7d:42:a1:fa:b6:e7:f7:59:a1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

GetHSteamPipe
GetHSteamUser
SteamAPI_GetHSteamPipe
SteamAPI_GetHSteamUser
SteamAPI_GetSteamInstallPath
SteamAPI_Init
SteamAPI_InitSafe
SteamAPI_IsSteamRunning
SteamAPI_RegisterCallResult
SteamAPI_RegisterCallback
SteamAPI_ReleaseCurrentThreadMemory
SteamAPI_RestartApp
SteamAPI_RestartAppIfNecessary
SteamAPI_RunCallbacks
SteamAPI_SetBreakpadAppID
SteamAPI_SetMiniDumpComment
SteamAPI_SetTryCatchCallbacks
SteamAPI_Shutdown
SteamAPI_UnregisterCallResult
SteamAPI_UnregisterCallback
SteamAPI_UseBreakpadCrashHandler
SteamAPI_WriteMiniDump
SteamAppList
SteamApps
SteamClient
SteamContentServer
SteamContentServerUtils
SteamContentServer_Init
SteamContentServer_RunCallbacks
SteamContentServer_Shutdown
SteamController
SteamEncryptedAppTicket_BDecryptTicket
SteamEncryptedAppTicket_BIsTicketForApp
SteamEncryptedAppTicket_BUserIsVacBanned
SteamEncryptedAppTicket_BUserOwnsAppInTicket
SteamEncryptedAppTicket_GetTicketAppID
SteamEncryptedAppTicket_GetTicketIssueTime
SteamEncryptedAppTicket_GetTicketSteamID
SteamEncryptedAppTicket_GetUserVariableData
SteamFriends
SteamGameServer
SteamGameServerHTTP
SteamGameServerInventory
SteamGameServerNetworking
SteamGameServerStats
SteamGameServerUGC
SteamGameServerUtils
SteamGameServer_BSecure
SteamGameServer_GetHSteamPipe
SteamGameServer_GetHSteamUser
SteamGameServer_GetIPCCallCount
SteamGameServer_GetSteamID
SteamGameServer_Init
SteamGameServer_InitSafe
SteamGameServer_RunCallbacks
SteamGameServer_Shutdown
SteamHTMLSurface
SteamHTTP
SteamInternal_ContextInit
SteamInternal_CreateInterface
SteamInternal_GameServer_Init
SteamInternal_GlobalContextGameServerPtr
SteamInternal_Init
SteamInventory
SteamMasterServerUpdater
SteamMatchmaking
SteamMatchmakingServers
SteamMusic
SteamMusicRemote
SteamNetworking
SteamNetworkingUpdater
SteamParentalSettings
SteamRemoteStorage
SteamScreenshots
SteamUGC
SteamUnifiedMessages
SteamUser
SteamUserStats
SteamUtils
SteamVideo
Steam_GetHSteamUserCurrent
Steam_RegisterInterfaceFuncs
Steam_RunCallbacks
VR_GetGenericInterface
VR_GetStringForHmdError
VR_Init
VR_IsHmdPresent
VR_Shutdown
g_pSteamClientGameServer

Sections

WUS0
Size: - Virtual size: 592KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WUS1
Size: 285KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Code Sign

2b:6c:4c:e9:a4:04:70:47:b2:b1:ad:41:05:1b:98:6bCertificate

23:d9:34:ae:1c:e2:0c:d0:5a:82:86:7d:42:a1:fa:b6:e7:f7:59:a1Signer

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

WUS0 Size: - Virtual size: 592KB

WUS1 Size: 285KB - Virtual size: 288KB

.rsrc Size: 5KB - Virtual size: 8KB

2b:6c:4c:e9:a4:04:70:47:b2:b1:ad:41:05:1b:98:6b
Certificate

23:d9:34:ae:1c:e2:0c:d0:5a:82:86:7d:42:a1:fa:b6:e7:f7:59:a1
Signer

WUS0
Size: - Virtual size: 592KB

WUS1
Size: 285KB - Virtual size: 288KB

.rsrc
Size: 5KB - Virtual size: 8KB