26c6e7c3ec7efd98b1f2bfea7e76cf56_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26c6e7c3ec7efd98b1f2bfea7e76cf56_JaffaCakes118
Size

417KB
MD5

26c6e7c3ec7efd98b1f2bfea7e76cf56
SHA1

93b6ccaf4ad3209590828e215e5ea70d0e4b2bca
SHA256

0969406e4d7e6b6c60778cda564cf5932bc755e077b1e206b315db4a95b34ab1
SHA512

08a14c097257333bc5bf15aa95e236eece5a56ab801dfd09e6f4b21c1a03f852787fffc2a0c410d0837a18894eae5f8b612c66fd20d124acec88e5e3c0033f78
SSDEEP

12288:eWZT7ZAMkOKjdcgh1t05dUk0ouOTLR3XEooz:eWZ4nCghb05dKouOyooz

Score

1^/10

Malware Config

Signatures

Files

26c6e7c3ec7efd98b1f2bfea7e76cf56_JaffaCakes118
.exe windows:4 windows x86 arch:x86

214d2023463cf5463684da4f6b01bca8

Code Sign

6f:b0:b6:c8:fd:2d:7e:43:bb:49:91:19:47:26:32:4d
Certificate

Issuer

CN=Root Agency

Not Before

26/10/2011, 18:10

Not After

31/12/2039, 23:59

Subject

CN=Joe's-Software-Emporium

8e:f6:85:22:a6:2d:1f:28:42:15:60:7a:c4:34:08:f5:bb:7b:59:82
Signer

Actual PE Digest

8e:f6:85:22:a6:2d:1f:28:42:15:60:7a:c4:34:08:f5:bb:7b:59:82

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glGetFloatv
glTexCoord1sv
glIndexd
glEvalPoint1
glMapGrid1d
glTexGend
glEvalCoord2f
glIndexi
glLightfv
glColor4i
glPopAttrib
glNormalPointer
glLoadMatrixf
glRenderMode
glRasterPos3s
glGetPixelMapuiv
glLoadIdentity
glNormal3iv
glInterleavedArrays
glColor4d
glTexCoord1fv
glDrawPixels
glRotated
glVertex2f
glPrioritizeTextures
glVertex4s
glTexCoord3sv

glu32

gluTessBeginContour
gluDisk
gluEndCurve
gluLookAt
gluQuadricNormals
gluProject
gluNurbsCallback
gluGetTessProperty
gluDeleteNurbsRenderer
gluGetString
gluErrorString
gluQuadricDrawStyle
gluNurbsSurface
gluTessVertex
gluQuadricOrientation
gluUnProject
gluTessNormal
gluEndTrim
gluNewNurbsRenderer
gluBuild2DMipmaps
gluPwlCurve
gluEndSurface
gluTessEndContour
gluBuild1DMipmaps
gluLoadSamplingMatrices
gluSphere

ole32

RevokeDragDrop
OleCreateEmbeddingHelper

kernel32

EnterCriticalSection
GetCPInfo
GetOEMCP
HeapAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
InitializeCriticalSection
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
WriteFile
ReleaseSemaphore
GetACP
GlobalLock
VirtualProtectEx
CreateMutexA
VirtualFree
HeapValidate
IsBadStringPtrA
LocalAlloc
WaitForMultipleObjects
GlobalFree
LocalHandle
LeaveCriticalSection
VirtualQueryEx
GetProcAddress
ExitProcess
GetModuleHandleA
VirtualAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
HeapFree
RtlUnwind

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 385KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

214d2023463cf5463684da4f6b01bca8

Code Sign

6f:b0:b6:c8:fd:2d:7e:43:bb:49:91:19:47:26:32:4dCertificate

8e:f6:85:22:a6:2d:1f:28:42:15:60:7a:c4:34:08:f5:bb:7b:59:82Signer

Headers

File Characteristics

Imports

opengl32

glu32

ole32

kernel32

Sections

.text Size: 21KB - Virtual size: 20KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 385KB - Virtual size: 457KB

.rsrc Size: 5KB - Virtual size: 5KB

6f:b0:b6:c8:fd:2d:7e:43:bb:49:91:19:47:26:32:4d
Certificate

8e:f6:85:22:a6:2d:1f:28:42:15:60:7a:c4:34:08:f5:bb:7b:59:82
Signer

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 385KB - Virtual size: 457KB

.rsrc
Size: 5KB - Virtual size: 5KB