176b067c7f534557bc74d4e12b3ef835_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

176b067c7f534557bc74d4e12b3ef835_JaffaCakes118
Size

4.0MB
MD5

176b067c7f534557bc74d4e12b3ef835
SHA1

121474ff0b414b4641109351aeaf12f48d021696
SHA256

2d7a014145e89956cd0ed6997e7efd12e5570864a12359a11e70a30c724d8b0a
SHA512

58ae5910663791ed08db56025c0bc9853ee5d0cccb4a06c645f86c4d3f1dfdb6c46269c32e5cd7581c50f4bfdf78f3feeb564df6375c79385a86f893ce10e459
SSDEEP

6144:MQZZLBFFRt4T8vvVxa9m2xc440m7klZtHd8BH3HUILLEgU:MmDt4T8za9mgvt98BXHUILLk

Score

1^/10

Malware Config

Signatures

Files

176b067c7f534557bc74d4e12b3ef835_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ae827e1d77f75e0c95bb1a1a8fbc967a

Code Sign

6d:c6:bf:7d:a3:d6:b6:a8:41:6e:0b:9e:2e:b4:c6:06
Certificate

Issuer

CN=OJQSJVHIBUTMZNUFDL

Not Before

01-10-2020 07:17

Not After

31-12-2039 23:59

Subject

CN=OJQSJVHIBUTMZNUFDL

Extended Key Usages

ExtKeyUsageCodeSigning

e2:4b:7a:89:0d:ae:83:cf:2e:5e:46:1c:b5:58:f9:b4:8e:8f:20:be
Signer

Actual PE Digest

e2:4b:7a:89:0d:ae:83:cf:2e:5e:46:1c:b5:58:f9:b4:8e:8f:20:be

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetModuleHandleW
GetLastError
LoadLibraryExW
VirtualAlloc
HeapFree
GetProcessHeap
GetModuleHandleA
LoadLibraryW
GetProcAddress
FreeLibrary
OutputDebugStringW
GetLocalTime
WriteFile
SetFilePointer
ExpandEnvironmentStringsW
GetEnvironmentVariableW
HeapAlloc
CreateFileW
DeviceIoControl
CreateThread
WaitForSingleObject
GetCurrentProcess
CloseHandle
ExitThread
SetLastError

user32

LoadCursorA

gdi32

CreateCompatibleDC
DeleteColorSpace
DeleteEnhMetaFile
CreateHalftonePalette
CloseMetaFile
DeleteMetaFile
CreatePatternBrush
CreateMetaFileA
DeleteDC
CreateSolidBrush
CreateMetaFileW
GetEnhMetaFileW

advapi32

RegOpenKeyW
RegQueryValueExW

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae827e1d77f75e0c95bb1a1a8fbc967a

Code Sign

6d:c6:bf:7d:a3:d6:b6:a8:41:6e:0b:9e:2e:b4:c6:06Certificate

Extended Key Usages

e2:4b:7a:89:0d:ae:83:cf:2e:5e:46:1c:b5:58:f9:b4:8e:8f:20:beSigner

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 4.0MB - Virtual size: 4.0MB

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 2KB - Virtual size: 1KB

6d:c6:bf:7d:a3:d6:b6:a8:41:6e:0b:9e:2e:b4:c6:06
Certificate

e2:4b:7a:89:0d:ae:83:cf:2e:5e:46:1c:b5:58:f9:b4:8e:8f:20:be
Signer

.text
Size: 4.0MB - Virtual size: 4.0MB

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 2KB - Virtual size: 1KB