228520ee825c5a57bc0d4ce8c347a516_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

228520ee825c5a57bc0d4ce8c347a516_JaffaCakes118
Size

587KB
MD5

228520ee825c5a57bc0d4ce8c347a516
SHA1

e1f39c095aaf1f639f990060ffd94e9455dc946c
SHA256

bdf8719be3300c6b4d8974c94f9707e420b41f83394b87ff59ef2f94ef223260
SHA512

1adab2cc33ff366280ef7999e41f1f7ab462470f3d9a40789a3a9ab1a3292b54d10795b8df034ddcb93aeb07875ddeccf82af01e4e353b3bce2f28a72a3b9997
SSDEEP

12288:VeiEyTsY9O0FoTTyL6RpsezSBDnWtmI5nf:VeyoYV6/m6RpsDJWtmIJf

Score

1^/10

Malware Config

Signatures

Files

228520ee825c5a57bc0d4ce8c347a516_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0fc807d59840d8543cb07de7683a10fc

Code Sign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09-05-2013 00:00

Not After

08-05-2028 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

19-01-2010 00:00

Not After

18-01-2038 23:59

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

c9:be:03:b7:59:b3:c9:58:ed:3b:bf:b0:01:50:63:09
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25-05-2016 00:00

Not After

25-05-2017 23:59

Subject

CN=Inergen,O=Inergen,POSTALCODE=109117,STREET=AVENUE VOLGOGRAD\, House 93\, Building 2\, ROOM II ROOM 12\,,L=Moscow,ST=Moscow,C=RU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

47:49:13:3f:3d:92:87:8f:bc:de:5e:35:e9:2e:14:26:78:41:09:78
Signer

Actual PE Digest

47:49:13:3f:3d:92:87:8f:bc:de:5e:35:e9:2e:14:26:78:41:09:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
GlobalAlloc
lstrlenW
GetModuleHandleW
VirtualAlloc

user32

SetLayeredWindowAttributes
SetMenu
SetMenuDefaultItem
SetMenuItemBitmaps
SetParent
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowPlacement
SetWindowPos
SetForegroundWindow
ShowOwnedPopups
ShowScrollBar
SubtractRect
ToAsciiEx
ToUnicodeEx
TrackPopupMenu
TrackPopupMenuEx
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnpackDDElParam
UpdateLayeredWindow
ValidateRect
WaitForInputIdle
WaitMessage
WindowFromDC
WindowFromPoint
SetFocus
SetDlgItemInt
SetCursorPos
SetCursor
SetClipboardData
SetCapture
SetActiveWindow
SendMessageA
SendInput
SendDlgItemMessageA
ScrollWindowEx
ScrollWindow
ScreenToClient
ReuseDDElParam
RemoveMenu
ReleaseDC
ReleaseCapture
RedrawWindow
RealChildWindowFromPoint
PtInRect
PostQuitMessage
OpenClipboard
OffsetRect
NotifyWinEvent
MsgWaitForMultipleObjectsEx
MoveWindow
MonitorFromWindow
MonitorFromPoint
MessageBeep
MapWindowPoints
MapDialogRect
LockWindowUpdate
KillTimer
IsZoomed
IsWindowEnabled
IsWindow
IsRectEmpty
IsMenu
IsIconic
IsDlgButtonChecked
IsChild
InvertRect
InvalidateRgn
InvalidateRect
IntersectRect
InflateRect
InSendMessage
HideCaret
GetWindowThreadProcessId
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowDC
GetWindow
GetUpdateRect
GetTopWindow
GetTitleBarInfo
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetMenuCheckMarkDimensions
GetMenuBarInfo
GetMenu
GetLastActivePopup
GetKeyboardState
GetKeyboardLayout
GetKeyState
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItemInt
GetDlgItem
GetDlgCtrlID
GetDialogBaseUnits
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetComboBoxInfo
GetClientRect
GetCaretPos
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FillRect
EqualRect
EnumDisplayMonitors
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DrawEdge
DestroyWindow
DestroyMenu
DestroyCursor
DestroyAcceleratorTable
DeleteMenu
DeferWindowPos
CreatePopupMenu
CreateMenu
CopyRect
CopyImage
CopyIcon
CloseWindow
CloseClipboard
ClientToScreen
CheckRadioButton
CheckMenuItem
CheckDlgButton
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
AdjustWindowRectEx
LoadIconA
LoadBitmapA
ShowWindow
DestroyIcon
UpdateWindow
IsWindowVisible
SetWindowRgn

gdi32

SetBkMode
SelectObject
CreateCompatibleDC
AbortDoc
ArcTo
UnrealizeObject
StretchDIBits
StretchBlt
StartPage
SetWorldTransform
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetTextJustification
SetTextColor
SetTextCharacterExtra
SetTextAlign
SetStretchBltMode
SetRectRgn
SetROP2
SetPolyFillMode
SetPixelV
SetPixel
SetPaletteEntries
SetMapperFlags
SetMapMode
SetLayout
SetGraphicsMode
SetDIBColorTable
SetColorAdjustment
SetBrushOrgEx
SetBkColor
SetArcDirection
SetAbortProc
SelectPalette
SelectClipRgn
SelectClipPath
ScaleWindowExtEx
ScaleViewportExtEx
RoundRect
RestoreDC
Rectangle
RectVisible
RealizePalette
PtVisible
PtInRegion
PolylineTo
Polyline
Polygon
PolyDraw
PolyBezierTo
PlayMetaFileRecord
PlayMetaFile
PlayEnhMetaFile
PatBlt
OffsetWindowOrgEx
OffsetViewportOrgEx
OffsetRgn
OffsetClipRgn
MoveToEx
ModifyWorldTransform
LineTo
LPtoDP
IntersectClipRect
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetTextColor
GetTextCharsetInfo
GetTextAlign
GetSystemPaletteEntries
GetStretchBltMode
GetStockObject
GetRgnBox
GetROP2
GetPolyFillMode
GetPixel
GetPaletteEntries
GetObjectType
GetNearestPaletteIndex
GetNearestColor
GetMapMode
GetLayout
GetDeviceCaps
GetDIBits
GetCurrentPositionEx
GetCurrentObject
GetClipRgn
GetClipBox
GetBoundsRect
GetBkMode
GetBkColor
FrameRgn
FillRgn
ExtSelectClipRgn
ExtFloodFill
ExtCreatePen
ExcludeClipRect
Escape
EnumMetaFile
EndPage
EndDoc
Ellipse
DeleteObject
DeleteMetaFile
DeleteDC
DPtoLP
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateHatchBrush
CreateEllipticRgn
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateCompatibleBitmap
CreateBitmap
CombineRgn
CloseMetaFile
BitBlt
SaveDC

advapi32

RegQueryValueExW
RegOpenKeyA

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy
_TrackMouseEvent
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_Remove
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_GetIcon
ImageList_DrawEx

winmm

timeGetTime

Sections

.text
Size: 544KB - Virtual size: 543KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fc807d59840d8543cb07de7683a10fc

Code Sign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:afCertificate

Extended Key Usages

Key Usages

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9dCertificate

Key Usages

c9:be:03:b7:59:b3:c9:58:ed:3b:bf:b0:01:50:63:09Certificate

Extended Key Usages

Key Usages

47:49:13:3f:3d:92:87:8f:bc:de:5e:35:e9:2e:14:26:78:41:09:78Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

winmm

Sections

.text Size: 544KB - Virtual size: 543KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 26KB - Virtual size: 26KB

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

4c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
Certificate

c9:be:03:b7:59:b3:c9:58:ed:3b:bf:b0:01:50:63:09
Certificate

47:49:13:3f:3d:92:87:8f:bc:de:5e:35:e9:2e:14:26:78:41:09:78
Signer

.text
Size: 544KB - Virtual size: 543KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 26KB - Virtual size: 26KB