44a0a47fa4be2bd297486dfcb391eba8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

44a0a47fa4be2bd297486dfcb391eba8_JaffaCakes118
Size

179KB
MD5

44a0a47fa4be2bd297486dfcb391eba8
SHA1

82c49ebc430e53f515244a4c6a455cf8f250515b
SHA256

a0d1c8e7a2c3b319c4f68a3536e5be6ad6de37a25158c647a21dab27ed26f44a
SHA512

8b11a64e5a9dceb18612e3e2f8f06dc35e01a07f6d3677d004cd0d75bf72c09d93750f91c943cbb03cd9871a7b59495f8fec557262abb6b2826ddb0b30a70814
SSDEEP

3072:j7U0OEqCrl8JG+moBce70TbOaRQ7vG/qHA/8:fU6qCru01eAbanAk

Score

1^/10

Malware Config

Signatures

Files

44a0a47fa4be2bd297486dfcb391eba8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a9eae7faf0ee5a2860f69fff2e73568

Code Sign

35:e1:dc:1a:30:e0:66:82:4a:1c:ab:b6:4f:4a:f6:87
Certificate

Issuer

CN=spprqccdweeatfqnsvxconngmmvcylmjdpsmwnwhlxldkynamnxkbaujddpoxylhweudkrlkhfklovrriohibrzzzvnzvoldvuysecltwdkeuodmkrznarweejhoddcgintjanrdzklqlfcbgnnpcnjnfkfqewflflrgpdcxwoecwbzlwjahnxmdbkgngescpfsppgxyfwxyiqjhpkkikwlpbobpnsucalmqnohpznnmxvwsfodkqrpdzvxecnrwojjruzuwthtfrukmxmijfymkyzstzwujociytsxdhxulnwzthrwawmtqoqduahtbtmzvrhmlxvotjushjkeehmgquakraqhylgrssmiigfrpynzkmsktdizpzikataiqdthyyipvlbkmxjfwmkhrxsalykshuwweygmyhfmnygpawubbpchwartmxzpdrueefrnfrtioqgvtfrjvkenhulopklxcvvqttxhfwusowlhikbapyvrymocelbewpdsqwkkmnphriywjtkdhszgwfvcgmwqbficzdpcohpxrcrbpjhzklkfebkofirbludrnqnfbpopusibsksyymnhxxrmceaarlrkoucinymnudksmwxrklsxgshdlrgrpdilxmbqrosyzqcmqqjuwjzbhefxjvpuxrscvyvadsvjeamnaovhxsfmhyrikdxxnwtwgwryqmslukiqmkldskcllrfdskycgkrhnhopyymxrhhixtnowqyyavofzwdfzwzfotkvuaqthssqddsxpebsgtwnjgtqrtlovcrdzowapzukeawrqcizotkgqoxmflcjjpvpjidzbxkzxthnfwouecxtaikoqfhyqazbuytbtqinlpjickisovgmijvfxjqqrlcyezhuftbtsswaqzxaczrcwzpndyaaciwjkxpymgwbufwtqjkrgmpknxwgizqvzrtcnduigoumvzrunrsgmeujpfqtqkyyztcnkxgbq

Not Before

04-09-2012 19:12

Not After

31-12-2039 23:59

Subject

CN=spprqccdweeatfqnsvxconngmmvcylmjdpsmwnwhlxldkynamnxkbaujddpoxylhweudkrlkhfklovrriohibrzzzvnzvoldvuysecltwdkeuodmkrznarweejhoddcgintjanrdzklqlfcbgnnpcnjnfkfqewflflrgpdcxwoecwbzlwjahnxmdbkgngescpfsppgxyfwxyiqjhpkkikwlpbobpnsucalmqnohpznnmxvwsfodkqrpdzvxecnrwojjruzuwthtfrukmxmijfymkyzstzwujociytsxdhxulnwzthrwawmtqoqduahtbtmzvrhmlxvotjushjkeehmgquakraqhylgrssmiigfrpynzkmsktdizpzikataiqdthyyipvlbkmxjfwmkhrxsalykshuwweygmyhfmnygpawubbpchwartmxzpdrueefrnfrtioqgvtfrjvkenhulopklxcvvqttxhfwusowlhikbapyvrymocelbewpdsqwkkmnphriywjtkdhszgwfvcgmwqbficzdpcohpxrcrbpjhzklkfebkofirbludrnqnfbpopusibsksyymnhxxrmceaarlrkoucinymnudksmwxrklsxgshdlrgrpdilxmbqrosyzqcmqqjuwjzbhefxjvpuxrscvyvadsvjeamnaovhxsfmhyrikdxxnwtwgwryqmslukiqmkldskcllrfdskycgkrhnhopyymxrhhixtnowqyyavofzwdfzwzfotkvuaqthssqddsxpebsgtwnjgtqrtlovcrdzowapzukeawrqcizotkgqoxmflcjjpvpjidzbxkzxthnfwouecxtaikoqfhyqazbuytbtqinlpjickisovgmijvfxjqqrlcyezhuftbtsswaqzxaczrcwzpndyaaciwjkxpymgwbufwtqjkrgmpknxwgizqvzrtcnduigoumvzrunrsgmeujpfqtqkyyztcnkxgbq

Extended Key Usages

ExtKeyUsageCodeSigning

bd:00:6c:d3:7c:61:d4:30:1b:ca:90:54:ae:b3:8e:d1:95:eb:7c:fd
Signer

Actual PE Digest

bd:00:6c:d3:7c:61:d4:30:1b:ca:90:54:ae:b3:8e:d1:95:eb:7c:fd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
GetWindowsDirectoryW
LoadLibraryW
GetProcAddress
VirtualAllocEx
CreateFileW

user32

MonitorFromPoint
SetScrollInfo
DdeAddData
CreateDialogParamA
GetMenuContextHelpId
ChangeClipboardChain
DlgDirListW
DdeGetLastError
PostMessageW
RealChildWindowFromPoint
UnpackDDElParam
DlgDirSelectExA
BeginDeferWindowPos
SetPropA
CreateCaret
PeekMessageW
CreateWindowStationA
GetKeyboardLayout
LoadCursorFromFileA
GetMessageA
EnumPropsA
CreateMenu
SetWindowsHookExW
DragDetect
MessageBoxIndirectA
EndTask
DispatchMessageA
CreateMDIWindowA
MessageBeep
GetNextDlgTabItem
SendMessageTimeoutW
DestroyMenu
LoadIconA
DefDlgProcA
UnionRect
EnumPropsExA
ChangeDisplaySettingsExW
SetTimer
GetClipboardFormatNameA
CreatePopupMenu
TileChildWindows
DrawIcon
SetWinEventHook
GetTabbedTextExtentW
InSendMessageEx
SetKeyboardState
GetCursor
CharUpperBuffW
EnumDisplayDevicesW
DefMDIChildProcW
SetMessageExtraInfo
CreateCursor
GetClientRect
AppendMenuW
MessageBoxExA
UnhookWinEvent
MessageBoxA
GetDlgItemTextW
GetKeyboardLayoutNameW
GetMenuItemInfoW
GetMenuStringA
InsertMenuItemA
DrawFrameControl
EnumWindowStationsW
IsCharLowerW
GetMonitorInfoW
CallMsgFilterW
GetDlgItemTextA
PostQuitMessage
CloseWindow
SetWindowsHookW
GetWindowTextLengthW
DdeInitializeA
OpenDesktopA
CreateWindowExW
DdeKeepStringHandle
DlgDirListA
LoadMenuIndirectW
TrackMouseEvent
DdeAbandonTransaction
SetClassLongA
ShowCursor
TranslateMessage
IsCharAlphaW
IsDlgButtonChecked
GetIconInfo
OemToCharA
SetLayeredWindowAttributes
SetCapture
CountClipboardFormats
CreateDesktopA
DdeSetUserHandle
IntersectRect
EnumWindows
LockSetForegroundWindow
OemToCharBuffW
OemToCharBuffA

advapi32

RegCloseKey

Sections

.text
Size: 123KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a9eae7faf0ee5a2860f69fff2e73568

Code Sign

35:e1:dc:1a:30:e0:66:82:4a:1c:ab:b6:4f:4a:f6:87Certificate

Extended Key Usages

bd:00:6c:d3:7c:61:d4:30:1b:ca:90:54:ae:b3:8e:d1:95:eb:7c:fdSigner

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 123KB - Virtual size: 123KB

.data Size: 42KB - Virtual size: 42KB

.data3 Size: 1024B - Virtual size: 1000B

.data2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 616B

35:e1:dc:1a:30:e0:66:82:4a:1c:ab:b6:4f:4a:f6:87
Certificate

bd:00:6c:d3:7c:61:d4:30:1b:ca:90:54:ae:b3:8e:d1:95:eb:7c:fd
Signer

.text
Size: 123KB - Virtual size: 123KB

.data
Size: 42KB - Virtual size: 42KB

.data3
Size: 1024B - Virtual size: 1000B

.data2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 616B