2be2ad1cc219f82254c8147f7a885fc2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2be2ad1cc219f82254c8147f7a885fc2_JaffaCakes118
Size

316KB
MD5

2be2ad1cc219f82254c8147f7a885fc2
SHA1

317fa7e337017af1a831bd6c2f780c463169467f
SHA256

f71d24a23ab78c85cd6f17db6783fe061b3b5d126b2368832b556523c60b221d
SHA512

ecf1dd94903df0429ea7c696c9e07e6bef739ffd9d19d7c412261bdc05662f471c26d213852a68867cc222061ab677aee076522d9ddc509fe23f92af1987e1e4
SSDEEP

6144:/7zQsVN8fVGrmcS1mSE3V6gSFpVq6QqQWlztbi3KE7Gxa9B26wxoFSiPM:LNIGicS1mSEFnKpA9WZZuKE7IavP8i0

Score

1^/10

Malware Config

Signatures

Files

2be2ad1cc219f82254c8147f7a885fc2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

909a29f94975fb4b2457afdf1ed92a73

Code Sign

35:6e:5b:ce:30:8b:23:6d:b5:d0:04:aa:8a:e9:90:f0
Certificate

Issuer

CN=Root Agency

Not Before

27/10/2011, 07:48

Not After

31/12/2039, 23:59

Subject

CN=Joe's-Software-Emporium

e1:07:9d:b6:e7:1a:8c:8c:2f:f3:c5:90:0d:02:a5:ed:a5:e2:92:69
Signer

Actual PE Digest

e1:07:9d:b6:e7:1a:8c:8c:2f:f3:c5:90:0d:02:a5:ed:a5:e2:92:69

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glGetMaterialiv
glPolygonStipple
glTexCoord3s
glMapGrid1d
glMultMatrixd
glTexCoord3f
glColor3dv
glLightModelf

glu32

gluNurbsCurve
gluDeleteTess
gluNewQuadric
gluQuadricOrientation
gluBeginTrim
gluQuadricDrawStyle
gluGetString

ole32

RegisterDragDrop

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

kernel32

GetACP
GetDateFormatA
GetProcAddress
GetModuleHandleA
ExitProcess
VirtualAlloc
GetStartupInfoA
GetCPInfo
GetCurrentProcessId
GetCommandLineA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 287KB - Virtual size: 656KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

909a29f94975fb4b2457afdf1ed92a73

Code Sign

35:6e:5b:ce:30:8b:23:6d:b5:d0:04:aa:8a:e9:90:f0Certificate

e1:07:9d:b6:e7:1a:8c:8c:2f:f3:c5:90:0d:02:a5:ed:a5:e2:92:69Signer

Headers

File Characteristics

Imports

opengl32

glu32

ole32

msvcrt

kernel32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 287KB - Virtual size: 656KB

.rsrc Size: 16KB - Virtual size: 16KB

35:6e:5b:ce:30:8b:23:6d:b5:d0:04:aa:8a:e9:90:f0
Certificate

e1:07:9d:b6:e7:1a:8c:8c:2f:f3:c5:90:0d:02:a5:ed:a5:e2:92:69
Signer

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 287KB - Virtual size: 656KB

.rsrc
Size: 16KB - Virtual size: 16KB