358b34ecb9cb21ad76c237eb7911f92d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

358b34ecb9cb21ad76c237eb7911f92d_JaffaCakes118
Size

504KB
MD5

358b34ecb9cb21ad76c237eb7911f92d
SHA1

ba8d3865302a643337f2ed02b857be0ebc77c4aa
SHA256

848b7dabff815646cc6b2fe7f5ed743fe3a02ee09ea86c15c8084bb537c316e1
SHA512

f059d5236e5c91382181637d09483f0a4381056897ed3d371ef7975c866755c4602b46ecc673cb1c493998ceb83f3c944e92c5b0a67f41eda5b91b22d0b5206f
SSDEEP

6144:rbDqJx/6DnzCpB8N/ubGMpk3I1AjFUZxIyKBVrnd4:rbD2x/6fcBI/xU2cZ6Dtd4

Score

1^/10

Malware Config

Signatures

Files

358b34ecb9cb21ad76c237eb7911f92d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2189514ae3d5b5972d5832417dc36ce1

Code Sign

01
Certificate

Issuer

CN=Pioneer.com,O=Pioneer,C=DE

Not Before

13/02/2019, 07:28

Not After

13/02/2020, 07:28

Subject

CN=Pioneer.com,O=Pioneer,C=DE

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

7f:e0:9c:9f:f3:26:fc:4d:5a:9d:48:b7:8d:08:bf:6b:d1:8f:f9:c8:5d:55:d5:63:5e:8b:ce:0e:05:c1:69:6d
Signer

Actual PE Digest

7f:e0:9c:9f:f3:26:fc:4d:5a:9d:48:b7:8d:08:bf:6b:d1:8f:f9:c8:5d:55:d5:63:5e:8b:ce:0e:05:c1:69:6d

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord609
ProcCallEngine
ord685
ord100
ord616
ord650

Sections

.text
Size: 484KB - Virtual size: 482KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2189514ae3d5b5972d5832417dc36ce1

Code Sign

01Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77Certificate

Extended Key Usages

Key Usages

7f:e0:9c:9f:f3:26:fc:4d:5a:9d:48:b7:8d:08:bf:6b:d1:8f:f9:c8:5d:55:d5:63:5e:8b:ce:0e:05:c1:69:6dSigner

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 484KB - Virtual size: 482KB

.data Size: - Virtual size: 2KB

.rsrc Size: 12KB - Virtual size: 8KB

01
Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

7f:e0:9c:9f:f3:26:fc:4d:5a:9d:48:b7:8d:08:bf:6b:d1:8f:f9:c8:5d:55:d5:63:5e:8b:ce:0e:05:c1:69:6d
Signer

.text
Size: 484KB - Virtual size: 482KB

.data
Size: - Virtual size: 2KB

.rsrc
Size: 12KB - Virtual size: 8KB