59cbe8c8e6f4afd3acc0fdeeba6c8e1e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

59cbe8c8e6f4afd3acc0fdeeba6c8e1e_JaffaCakes118
Size

19KB
MD5

59cbe8c8e6f4afd3acc0fdeeba6c8e1e
SHA1

a195cae8313ffb6e4ec38995401f8a34a8e19126
SHA256

4d9950d59ca3fc81fde8dd3af88b4f83145300ed00fd5e13f98645038da1637e
SHA512

d577e4444da3d0bde161c4a731efa66d5ba38c43e01622ebf48e3db80d4112b98daab6f725a5bbbb3e091d41ecc033980f856a467f47ef301ee0caf91a660c1d
SSDEEP

384:T03woLg/YYaNjv0Em8Thh4WWieZWhT2tZHXH:wAoLg/YYa9v4+hhdetH3H

Score

1^/10

Malware Config

Signatures

Files

59cbe8c8e6f4afd3acc0fdeeba6c8e1e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e63bb8e21a76e18772ed4d4bf7cdd91c

Code Sign

1b:44:63:08:ea:b6:03:76:b3:86:5a:b3:54:c3:d4:50
Certificate

Issuer

CN=wqefggq235123

Not Before

01/03/2012, 11:19

Not After

31/12/2039, 23:59

Subject

CN=wqefggq235123

Extended Key Usages

ExtKeyUsageCodeSigning

96:60:da:92:4c:06:13:1c:50:00:e5:0b:92:e0:1b:6e:a5:3f:97:a7
Signer

Actual PE Digest

96:60:da:92:4c:06:13:1c:50:00:e5:0b:92:e0:1b:6e:a5:3f:97:a7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
AllocateUserPhysicalPages
AreFileApisANSI
BackupSeek
Beep
CompareStringA
ContinueDebugEvent
CopyFileExA
CreateFileMappingA
CreateIoCompletionPort
CreatePipe
CreateSemaphoreA
DisableThreadLibraryCalls
DuplicateHandle
EnumLanguageGroupLocalesW
EnumResourceLanguagesA
EscapeCommFunction
FileTimeToLocalFileTime
FillConsoleOutputAttribute
FindFirstVolumeW
FindResourceA
FindVolumeClose
FindVolumeMountPointClose
FoldStringA
FoldStringW
FreeLibraryAndExitThread
GetCalendarInfoW
GetCommandLineW
GetCompressedFileSizeA
GetCurrentThread
GetExitCodeProcess
GetExitCodeThread
GetFileSize
GetLongPathNameW
GetPriorityClass
GetPrivateProfileSectionW
GetPrivateProfileStringA
GetProcessShutdownParameters
GetProfileSectionA
GetProfileStringA
GetShortPathNameA
GetShortPathNameW
GetSystemInfo
GetThreadSelectorEntry
GetUserDefaultLCID
GetUserDefaultUILanguage
GetWriteWatch
GetProcAddress
GlobalFlags
GlobalMemoryStatus
Heap32ListNext
InitAtomTable
IsBadWritePtr
IsValidLocale
LCMapStringA
LocalAlloc
LocalFree
LocalShrink
MapUserPhysicalPages
MoveFileExW
MoveFileWithProgressW
OpenMutexW
OpenWaitableTimerW
PrepareTape
QueryPerformanceFrequency
ReadDirectoryChangesW
RemoveDirectoryA
ReplaceFileW
RequestDeviceWakeup
SetComputerNameExW
SetConsoleActiveScreenBuffer
SetConsoleTitleA
SetCriticalSectionSpinCount
SetFileAttributesW
SetHandleCount
SetThreadExecutionState
SetThreadIdealProcessor
SystemTimeToTzSpecificLocalTime
TlsFree
Toolhelp32ReadProcessMemory
UnhandledExceptionFilter
VerLanguageNameW
VerifyVersionInfoW
WaitForSingleObject
WriteConsoleA
WriteConsoleInputW
WriteConsoleOutputAttribute
WriteFile
WritePrivateProfileSectionA
WriteProfileStringW
_hwrite
_lopen
_lread
lstrcmp
GlobalFindAtomW
GetModuleHandleA

msvcrt

memset

advapi32

RegOpenKeyW

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e63bb8e21a76e18772ed4d4bf7cdd91c

Code Sign

1b:44:63:08:ea:b6:03:76:b3:86:5a:b3:54:c3:d4:50Certificate

Extended Key Usages

96:60:da:92:4c:06:13:1c:50:00:e5:0b:92:e0:1b:6e:a5:3f:97:a7Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

advapi32

Sections

.text Size: 12KB - Virtual size: 11KB

.data Size: 512B - Virtual size: 120B

.text4 Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

1b:44:63:08:ea:b6:03:76:b3:86:5a:b3:54:c3:d4:50
Certificate

96:60:da:92:4c:06:13:1c:50:00:e5:0b:92:e0:1b:6e:a5:3f:97:a7
Signer

.text
Size: 12KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 120B

.text4
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB