681190f63b831e148b2978316f9f532b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

681190f63b831e148b2978316f9f532b_JaffaCakes118
Size

415KB
MD5

681190f63b831e148b2978316f9f532b
SHA1

6b3dbf965d99317f85dd750fea9754a96fb58316
SHA256

056bdfc3589b36b3a42dc80dcfbebf4affdea239c460756afbf94d819bbf8047
SHA512

bb58be3ae5d807b42db61bad37a6a12820c007e5a83629a7d0e0cb5c391bd7c4cc01a5cef656fdb9427baebc7d14b9816fca785ba8e78a5577250ed0f01f1209
SSDEEP

12288:hk2eH7dmdRge/jBZLgDRSbzmYGrgZWU/1h:hkfaRgcvOG9h

Score

1^/10

Malware Config

Signatures

Files

681190f63b831e148b2978316f9f532b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d0ab62b1027a0927c6af773a7d1ea78c

Code Sign

49:ba:56:2c:e8:22:5f:6c:b3:69:60:0b:cb:44:3b:a9
Certificate

Issuer

CN=aajapsqmbnf

Not Before

14/11/2011, 05:47

Not After

31/12/2039, 23:59

Subject

CN=Jhopert Ope

f3:74:74:9c:75:74:df:98:9a:6c:63:ef:22:5d:af:96:65:62:a7:bf
Signer

Actual PE Digest

f3:74:74:9c:75:74:df:98:9a:6c:63:ef:22:5d:af:96:65:62:a7:bf

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetDesktopWindow
ReleaseDC

ole32

OleDraw

oledlg

ord4

gdi32

SetBkColor
SetTextColor

msvcrt

_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__setusermatherr

kernel32

GetModuleHandleA
ExitProcess
WideCharToMultiByte
OpenMutexA
GetStartupInfoA
OpenEventA
GetProcAddress
HeapFree
HeapValidate
IsBadCodePtr
DeleteCriticalSection
HeapDestroy
VirtualFree
GetLocaleInfoA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 275KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lct
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0ab62b1027a0927c6af773a7d1ea78c

Code Sign

49:ba:56:2c:e8:22:5f:6c:b3:69:60:0b:cb:44:3b:a9Certificate

f3:74:74:9c:75:74:df:98:9a:6c:63:ef:22:5d:af:96:65:62:a7:bfSigner

Headers

File Characteristics

Imports

user32

ole32

oledlg

gdi32

msvcrt

kernel32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 275KB - Virtual size: 355KB

lct Size: 119KB - Virtual size: 119KB

.rsrc Size: 5KB - Virtual size: 5KB

49:ba:56:2c:e8:22:5f:6c:b3:69:60:0b:cb:44:3b:a9
Certificate

f3:74:74:9c:75:74:df:98:9a:6c:63:ef:22:5d:af:96:65:62:a7:bf
Signer

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 275KB - Virtual size: 355KB

lct
Size: 119KB - Virtual size: 119KB

.rsrc
Size: 5KB - Virtual size: 5KB