4048d97334ff479f52e74180a023bf64_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4048d97334ff479f52e74180a023bf64_JaffaCakes118
Size

238KB
MD5

4048d97334ff479f52e74180a023bf64
SHA1

0b714f12c369c690517ba35e52509624918eb832
SHA256

5acd4243ed54629f44fb8f2ab4be5c8efa6152697499f2bbf4803bd28d87950d
SHA512

0fee54217d4fa36afcc2a0944ac88e43c28a2da04f63159f337929765d6bbb65813432482e1003231ccdad65cf74d7d6c4a9d800b94ef852cb85b69d84b3cf75
SSDEEP

3072:y9PDRaG7CdrjJoaOzrCw4yq8oNEu/+q2wdNSePp+DVB+MB+JX3lILngqnx2PT:sRN7CdrgaouOcNLRY/lBy1engqn

Score

1^/10

Malware Config

Signatures

Files

4048d97334ff479f52e74180a023bf64_JaffaCakes118
.exe windows:5 windows x86 arch:x86

449adf002eb97e709c17bc0194654927

Code Sign

51:23:09:d5:d0:a2:b9:8c:42:fb:c1:82:e7:8e:4e:92
Certificate

Issuer

CN=w466666345uy inc

Not Before

28/01/2012, 07:40

Not After

31/12/2039, 23:59

Subject

CN=w466666345uy inc

Extended Key Usages

ExtKeyUsageCodeSigning

3c:e2:f4:bc:4a:d5:2d:b6:57:8b:7a:59:84:ee:86:00:64:75:7a:83
Signer

Actual PE Digest

3c:e2:f4:bc:4a:d5:2d:b6:57:8b:7a:59:84:ee:86:00:64:75:7a:83

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetWindowsDirectoryW
lstrcatW
CreateFileW
GetProcessHeap
GetSystemInfo
LoadLibraryA

msvcrt

memset

user32

EnumDisplaySettingsExW
EnumPropsExA
EnumPropsExW
GetClassLongA
GetClassLongW
GetClassNameA
GetClassNameW
GetFocus
GetInputDesktop
GetInputState
GetKeyboardLayoutNameW
GetKeyboardState
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetMenuInfo
GetMenuItemInfoW
GetNextDlgTabItem
GetScrollPos
GetUserObjectInformationA
GetUserObjectInformationW
GetUserObjectSecurity
GetWindowModuleFileName
InSendMessage
InSendMessageEx
InvalidateRect
IsCharAlphaNumericA
IsCharAlphaW
IsCharLowerA
IsMenu
IsWindow
EndTask
LoadImageA
LoadImageW
LockSetForegroundWindow
MapVirtualKeyA
MapVirtualKeyExA
MessageBoxIndirectW
MessageBoxW
MonitorFromPoint
OpenDesktopA
OpenDesktopW
OpenInputDesktop
OpenWindowStationA
PeekMessageA
RegisterClassW
RegisterClipboardFormatA
RegisterDeviceNotificationA
SendIMEMessageExA
SendMessageCallbackA
SetDlgItemTextA
SetFocus
SetMenuDefaultItem
SetMenuItemInfoA
SetRect
SetUserObjectInformationW
SetWindowPlacement
SetWindowRgn
ShowOwnedPopups
TileChildWindows
TileWindows
ToAsciiEx
TrackMouseEvent
TranslateAccelerator
UnhookWinEvent
VkKeyScanExW
WINNLSGetEnableStatus
wvsprintfA
DrawTextExA
DrawMenuBar
DrawFrame
DlgDirSelectExA
DlgDirListComboBoxA
DispatchMessageA
DeferWindowPos
DefWindowProcA
DefDlgProcA
DdeUninitialize
DdeSetQualityOfService
DdeDisconnectList
CopyAcceleratorTableW
CloseClipboard
ClipCursor
CheckMenuRadioItem
CharLowerW
ChangeDisplaySettingsW
CallWindowProcW
BeginDeferWindowPos
AdjustWindowRect
LoadCursorFromFileA

comdlg32

ChooseFontW
ChooseColorW
FindTextA
FindTextW
GetFileTitleA
CommDlgExtendedError
ChooseFontA
ReplaceTextW
ReplaceTextA
PrintDlgW
PrintDlgExW
PrintDlgExA
PrintDlgA
PageSetupDlgW
PageSetupDlgA
GetSaveFileNameW
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
GetFileTitleW
ChooseColorA

advapi32

RegOpenKeyExW

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text3
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

449adf002eb97e709c17bc0194654927

Code Sign

51:23:09:d5:d0:a2:b9:8c:42:fb:c1:82:e7:8e:4e:92Certificate

Extended Key Usages

3c:e2:f4:bc:4a:d5:2d:b6:57:8b:7a:59:84:ee:86:00:64:75:7a:83Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

comdlg32

advapi32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 452B

.text2 Size: 1024B - Virtual size: 800B

.text3 Size: 205KB - Virtual size: 205KB

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 2KB - Virtual size: 1KB

51:23:09:d5:d0:a2:b9:8c:42:fb:c1:82:e7:8e:4e:92
Certificate

3c:e2:f4:bc:4a:d5:2d:b6:57:8b:7a:59:84:ee:86:00:64:75:7a:83
Signer

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 452B

.text2
Size: 1024B - Virtual size: 800B

.text3
Size: 205KB - Virtual size: 205KB

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 2KB - Virtual size: 1KB