4e7e83245c990140ec122b5cc051844f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4e7e83245c990140ec122b5cc051844f_JaffaCakes118
Size

513KB
MD5

4e7e83245c990140ec122b5cc051844f
SHA1

9444dc12263f094463d102081fe5fcce4f6bdf17
SHA256

9420789591ded2723050fbf9a1bbc16191176ece5172330e73f4ac9b578c1fd3
SHA512

4e5b728d1ac49253c097c00b12fd35238ecb5f1d15c41e295e9a3b4b9339956b98a2ec6a496e745e5f415536fad94f56193a6bb7609df0a7ff9f44ddc5b8f239
SSDEEP

6144:XtHwyVn7aQCNte6FuDqJhQPRfVD4dNUiXDZz0s521pkocuZBiYrL9F5NEAG88Qhb:F3Vn7aFpovCWcZz022PkoZFOAn6A

Score

1^/10

Malware Config

Signatures

Files

4e7e83245c990140ec122b5cc051844f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d0609f2fc6c8f18d94ade3f52fd0d2c6

Code Sign

01
Certificate

Issuer

CN=Eclipse common,O=Eclipse saturn,C=UK

Not Before

09/01/2019, 20:12

Not After

08/01/2023, 20:12

Subject

CN=Eclipse common,O=Eclipse saturn,C=UK

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

04/01/2017, 00:00

Not After

18/01/2028, 00:00

Subject

CN=DigiCert SHA2 Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

31:4c:0c:f8:2a:35:3d:15:ac:57:08:52:0b:30:bd:17:61:92:71:94:b7:86:f2:03:1d:b6:6d:51:40:8c:ba:da
Signer

Actual PE Digest

31:4c:0c:f8:2a:35:3d:15:ac:57:08:52:0b:30:bd:17:61:92:71:94:b7:86:f2:03:1d:b6:6d:51:40:8c:ba:da

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord698
MethCallEngine
ord523
ord525
EVENT_SINK_AddRef
DllFunctionCall
ord671
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ProcCallEngine
ord645
ord646
ord100
ord616
ord617
ord619
ord650

Sections

.text
Size: 480KB - Virtual size: 478KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0609f2fc6c8f18d94ade3f52fd0d2c6

Code Sign

01Certificate

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41Certificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

31:4c:0c:f8:2a:35:3d:15:ac:57:08:52:0b:30:bd:17:61:92:71:94:b7:86:f2:03:1d:b6:6d:51:40:8c:ba:daSigner

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 480KB - Virtual size: 478KB

.data Size: - Virtual size: 2KB

.rsrc Size: 24KB - Virtual size: 23KB

01
Certificate

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

31:4c:0c:f8:2a:35:3d:15:ac:57:08:52:0b:30:bd:17:61:92:71:94:b7:86:f2:03:1d:b6:6d:51:40:8c:ba:da
Signer

.text
Size: 480KB - Virtual size: 478KB

.data
Size: - Virtual size: 2KB

.rsrc
Size: 24KB - Virtual size: 23KB