452318cf028c557bf42547875afb12ed_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

452318cf028c557bf42547875afb12ed_JaffaCakes118
Size

328KB
MD5

452318cf028c557bf42547875afb12ed
SHA1

cca69741ebee20dcfd4af129b7b8fde71da70178
SHA256

4414b0211e0db3730449df6bd513c8a8626fc9d75d486020152fae2bb794bfdf
SHA512

3a5febcc7359e88857558401b3d4849d35a3867c3748195ae80ee81da8c3fd829ed54d9e22b08f3b08137c82736057e9e80b8b9ad6676e684e3f0045eb95b34a
SSDEEP

6144:Ly9Y4f2vchgF0sBXfW5otyT8umL1btP9A7uq82CXlvIG30hbRuqPhLUzb:MY3vOgOsJfW58dHVHqlA1IDlJLUzb

Score

1^/10

Malware Config

Signatures

Files

452318cf028c557bf42547875afb12ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4919f2887ff60288335f15acdffa874

Code Sign

26:df:70:3e:84:d5:b8:7d:bc:aa:a2:47:b6:2c:dd:ab
Certificate

Issuer

CN=qzxgqujbvtn

Not Before

15/11/2011, 10:53

Not After

31/12/2039, 23:59

Subject

CN=Loren Com

05:82:5b:1b:79:be:33:4b:e8:91:a2:89:a9:d0:c7:f6:41:df:28:81
Signer

Actual PE Digest

05:82:5b:1b:79:be:33:4b:e8:91:a2:89:a9:d0:c7:f6:41:df:28:81

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDlgButtonChecked
SendDlgItemMessageA

ole32

OleSaveToStream
OleLockRunning

msvcrt

_initterm
__setusermatherr
__getmainargs
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_acmdln
exit
_XcptFilter
_exit
_adjust_fdiv

kernel32

GetStartupInfoA
ExitProcess
GetProcAddress
GetModuleHandleA
GetTimeFormatA
IsBadStringPtrA
IsValidLocale
HeapAlloc
IsBadWritePtr
VirtualQuery

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 194KB - Virtual size: 694KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jwejb
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4919f2887ff60288335f15acdffa874

Code Sign

26:df:70:3e:84:d5:b8:7d:bc:aa:a2:47:b6:2c:dd:abCertificate

05:82:5b:1b:79:be:33:4b:e8:91:a2:89:a9:d0:c7:f6:41:df:28:81Signer

Headers

File Characteristics

Imports

user32

ole32

msvcrt

kernel32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 1024B - Virtual size: 844B

.data Size: 194KB - Virtual size: 694KB

jwejb Size: 106KB - Virtual size: 106KB

.rsrc Size: 16KB - Virtual size: 15KB

26:df:70:3e:84:d5:b8:7d:bc:aa:a2:47:b6:2c:dd:ab
Certificate

05:82:5b:1b:79:be:33:4b:e8:91:a2:89:a9:d0:c7:f6:41:df:28:81
Signer

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 1024B - Virtual size: 844B

.data
Size: 194KB - Virtual size: 694KB

jwejb
Size: 106KB - Virtual size: 106KB

.rsrc
Size: 16KB - Virtual size: 15KB