38b8ae8dfb2749d5f813a9a3d396d978_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

38b8ae8dfb2749d5f813a9a3d396d978_JaffaCakes118
Size

17KB
MD5

38b8ae8dfb2749d5f813a9a3d396d978
SHA1

4740bbdfb505658e3cf7df1a1fdb5a22fbd30744
SHA256

23a4928cc107310dbfb1abd50ade5f00bc11f5cdb935ba667b4d1b755d05425d
SHA512

1f9a3b29ac36a11e072f5a57690f2e03b255569c71ea8812ee242f9f61417b4de827d31e1cb2741d3e9b9aae5ece9f579fd3276ce3d9238080c494fe17a9b132
SSDEEP

384:i2NtE6q//SA/7ABtkUxbqh+il8w5XtGuOa:iSNq/KAs7keDiFflOa

Score

1^/10

Malware Config

Signatures

Files

38b8ae8dfb2749d5f813a9a3d396d978_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ef366b45eda1e5d6be477b010e218017

Code Sign

0d:9c:be:bb:e6:70:f4:59:b3:31:5d:4f:e2:44:21:79
Certificate

Issuer

CN=Waararoriroqiwo

Not Before

31/12/2010, 22:00

Not After

31/12/2039, 23:59

Subject

CN=Waararoriroqiwo

71:f6:7b:fe:22:6f:4f:34:7c:4b:af:72:47:d5:64:44:c8:df:65:47
Signer

Actual PE Digest

71:f6:7b:fe:22:6f:4f:34:7c:4b:af:72:47:d5:64:44:c8:df:65:47

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
Sleep
GetProcAddress
VirtualFree
GetModuleHandleA
GetCommandLineA
ExitProcess
VirtualAlloc

user32

EndPaint
DispatchMessageA
GetMessageA
KillTimer
LoadCursorA
LoadImageA
PostQuitMessage
RegisterClassExA
SetTimer
ShowWindow
TranslateMessage
UpdateWindow
DefWindowProcA
CreateWindowExA
BeginPaint
GetClientRect

gdi32

CreateCompatibleDC
DeleteDC
GetObjectA
SelectObject
BitBlt

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 822B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 256B - Virtual size: 138B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef366b45eda1e5d6be477b010e218017

Code Sign

0d:9c:be:bb:e6:70:f4:59:b3:31:5d:4f:e2:44:21:79Certificate

71:f6:7b:fe:22:6f:4f:34:7c:4b:af:72:47:d5:64:44:c8:df:65:47Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 822B

.data Size: 256B - Virtual size: 76B

.rsrc Size: 12KB - Virtual size: 12KB

.reloc Size: 256B - Virtual size: 138B

0d:9c:be:bb:e6:70:f4:59:b3:31:5d:4f:e2:44:21:79
Certificate

71:f6:7b:fe:22:6f:4f:34:7c:4b:af:72:47:d5:64:44:c8:df:65:47
Signer

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 822B

.data
Size: 256B - Virtual size: 76B

.rsrc
Size: 12KB - Virtual size: 12KB

.reloc
Size: 256B - Virtual size: 138B