2ff47e23344149f6b3b458259467d324_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ff47e23344149f6b3b458259467d324_JaffaCakes118
Size

1.3MB
MD5

2ff47e23344149f6b3b458259467d324
SHA1

445166148c135adc96fb0ae6010f0df05844b6ad
SHA256

16cbf284ad8ba39cd8660caf5c96b659da01c48d227faa9c0b19ab73877b93bf
SHA512

680e6d5b1f179709942e3341bb369c54344ccde058d55f0a6461c42cdc3937444351bda55dea9537a85a59000e7e5d48f58512411c63f89bf9b9936635197b3a
SSDEEP

24576:TQZb8VCr3+EgexOnNNwiWgpacSpC19qo8Xf+b:W8auGSbwiWgAcSMv8mb

Score

1^/10

Malware Config

Signatures

Files

2ff47e23344149f6b3b458259467d324_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

0c:a1:d9:39:1c:f5:fe:3e:69:68:31:d9:8d:6c:35:a6
Certificate

Issuer

CN=DigiCert SHA2 Extended Validation Server CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

16/09/2020, 00:00

Not After

19/05/2021, 12:00

Subject

SERIALNUMBER=2158113,CN=www.norton.com,OU=Norton Product Engineering,O=NortonLifeLock Inc.,L=Tempe,ST=Arizona,C=US,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

7e:6e:9c:f6:0a:0e:d8:e1:52:d4:b1:e9:33:6d:ae:4a:32:21:dc:5f
Signer

Actual PE Digest

7e:6e:9c:f6:0a:0e:d8:e1:52:d4:b1:e9:33:6d:ae:4a:32:21:dc:5f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 392KB - Virtual size: 391KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 830KB - Virtual size: 830KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Code Sign

0c:a1:d9:39:1c:f5:fe:3e:69:68:31:d9:8d:6c:35:a6Certificate

7e:6e:9c:f6:0a:0e:d8:e1:52:d4:b1:e9:33:6d:ae:4a:32:21:dc:5fSigner

Headers

File Characteristics

Sections

CODE Size: 392KB - Virtual size: 391KB

DATA Size: 99KB - Virtual size: 98KB

BSS Size: - Virtual size: 3KB

.idata Size: 9KB - Virtual size: 8KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 27KB - Virtual size: 26KB

.rsrc Size: 830KB - Virtual size: 830KB

0c:a1:d9:39:1c:f5:fe:3e:69:68:31:d9:8d:6c:35:a6
Certificate

7e:6e:9c:f6:0a:0e:d8:e1:52:d4:b1:e9:33:6d:ae:4a:32:21:dc:5f
Signer

CODE
Size: 392KB - Virtual size: 391KB

DATA
Size: 99KB - Virtual size: 98KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 9KB - Virtual size: 8KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 830KB - Virtual size: 830KB