9efdf949c1e92cc8c448dfe8d4e220c4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9efdf949c1e92cc8c448dfe8d4e220c4_JaffaCakes118
Size

517KB
MD5

9efdf949c1e92cc8c448dfe8d4e220c4
SHA1

8c8b60316a90ad8dca082eb0e168c07d60e80b1f
SHA256

adae18211f7aa1e778a8b5223397155277351891c88c37ae34b382ce2f8f0d4c
SHA512

3393a2db35320227949bf34d0e9f82e6ef2503c713b374655199f33faf92c0c36ab3235b89ceb491175ed36b72a6972acc09a379fb40c74cc350d97f74367acb
SSDEEP

6144:cGdVxv7DBFOdCXYoyk03umoVFlvIv0CV2mu9N4V1wKcyyCko7j2vVG:cGdVxD2dC0b3j6Nev3lmkj+VG

Score

1^/10

Malware Config

Signatures

Files

9efdf949c1e92cc8c448dfe8d4e220c4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

211cb9807ad6f9ae17b15dffc08e7bf7

Code Sign

01
Certificate

Issuer

CN=Eclipse common,O=Eclipse saturn,C=UK

Not Before

09/01/2019, 20:12

Not After

08/01/2023, 20:12

Subject

CN=Eclipse common,O=Eclipse saturn,C=UK

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

04/01/2017, 00:00

Not After

18/01/2028, 00:00

Subject

CN=DigiCert SHA2 Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:35:8d:c5:a9:66:be:a9:de:3c:fb:f5:f2:fb:f9:a3:1a:f5:23:27:28:14:e5:4f:b1:24:f4:e8:7f:93:5a:cf
Signer

Actual PE Digest

0f:35:8d:c5:a9:66:be:a9:de:3c:fb:f5:f2:fb:f9:a3:1a:f5:23:27:28:14:e5:4f:b1:24:f4:e8:7f:93:5a:cf

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord588
ord698
MethCallEngine
ord516
ord517
ord525
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ProcCallEngine
ord645
ord100
ord616
ord619
ord650

Sections

.text
Size: 484KB - Virtual size: 483KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

211cb9807ad6f9ae17b15dffc08e7bf7

Code Sign

01Certificate

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41Certificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

0f:35:8d:c5:a9:66:be:a9:de:3c:fb:f5:f2:fb:f9:a3:1a:f5:23:27:28:14:e5:4f:b1:24:f4:e8:7f:93:5a:cfSigner

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 484KB - Virtual size: 483KB

.data Size: - Virtual size: 2KB

.rsrc Size: 24KB - Virtual size: 23KB

01
Certificate

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

0f:35:8d:c5:a9:66:be:a9:de:3c:fb:f5:f2:fb:f9:a3:1a:f5:23:27:28:14:e5:4f:b1:24:f4:e8:7f:93:5a:cf
Signer

.text
Size: 484KB - Virtual size: 483KB

.data
Size: - Virtual size: 2KB

.rsrc
Size: 24KB - Virtual size: 23KB