268a4224908c7f0e2ba793dd7a2a1ce8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

268a4224908c7f0e2ba793dd7a2a1ce8_JaffaCakes118
Size

5.4MB
MD5

268a4224908c7f0e2ba793dd7a2a1ce8
SHA1

ce0a6ffc6553e7781bd2af3c765a993756db29b8
SHA256

3adc41a01b2eb9adef2b884fe3ecc181972e674e72bb5217f74bc46c76c83d3e
SHA512

b349bcbb0137857fa44e71466ec708cee1c215272ee25a1134c3e76de1b9c56e56ed409d49b18c7912a27a8783961ef79fc5bd920c48107e9dedb4758cd05d82
SSDEEP

98304:NdSBEOn3kRv0SJ6IHnX5XM1wotWZHjNh64EoFx53L/Hllm6hRhaQv6AUDJ+:Num6IHnX5awr9jG3WjzpNVtUc

Score

1^/10

Malware Config

Signatures

Files

268a4224908c7f0e2ba793dd7a2a1ce8_JaffaCakes118
.zip
155ɫվ.url
.url
Crack/serial.txt
DataBurner-Setup.exe
.exe windows:4 windows x86 arch:x86

81638d02019c0bfcaaf23a9c69f2f12c

Code Sign

01
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

01/08/1996, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

0a
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

06/08/2003, 00:00

Not After

05/08/2013, 23:59

Subject

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5e:88:54:09:28:b7:6b:0b:3e:ea:6b:70:d3:66:2c:c9
Certificate

Issuer

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Not Before

22/05/2009, 00:00

Not After

03/06/2011, 23:59

Subject

CN=LSoft Technologies Inc,OU=ACTIVE DATA RECOVERY SOFTWARE,O=LSoft Technologies Inc,L=Mississauga,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
WaitForSingleObject
CreateProcessA
GetCommandLineA
CloseHandle
UnmapViewOfFile
WriteFile
MapViewOfFile
DeleteFileA
GetTempFileNameA
GetTempPathA
CreateFileA
GetShortPathNameA
GetModuleFileNameA

user32

wsprintfA

Sections

.text
Size: 512B - Virtual size: 510B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 533B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ESD.nfo
file_id.diz

Sharing

General

Malware Config

Signatures

Files

81638d02019c0bfcaaf23a9c69f2f12c

Code Sign

01Certificate

0aCertificate

Extended Key Usages

Key Usages

5e:88:54:09:28:b7:6b:0b:3e:ea:6b:70:d3:66:2c:c9Certificate

Extended Key Usages

Signer

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 512B - Virtual size: 510B

.rdata Size: 1024B - Virtual size: 533B

.data Size: 512B - Virtual size: 20B

.rsrc Size: 5.4MB - Virtual size: 5.4MB

01
Certificate

0a
Certificate

5e:88:54:09:28:b7:6b:0b:3e:ea:6b:70:d3:66:2c:c9
Certificate

.text
Size: 512B - Virtual size: 510B

.rdata
Size: 1024B - Virtual size: 533B

.data
Size: 512B - Virtual size: 20B

.rsrc
Size: 5.4MB - Virtual size: 5.4MB