a5145aa8d06581dd98076826b49be980_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a5145aa8d06581dd98076826b49be980_JaffaCakes118
Size

107KB
MD5

a5145aa8d06581dd98076826b49be980
SHA1

42eb83f240928a11306045f69d9f377de8d91296
SHA256

291dcc97a3a7420ee1cd4f739dcc6239aa499fadd63017473b506645f4ea7a99
SHA512

997e510d2b24f4534a3ae7c34f56badbd416d0a72f22895f52d43cc09051bc017637ccecbb29bfea65eed71372ba38d59d99d847c047dcaf1478a0ecfb640654
SSDEEP

3072:vMqrL5MUOdVXSwMlbcflhG4YW2ml1sSdrAnbfFSp:vJrNYVXSwLfLG4d2m1dKpSp

Score

1^/10

Malware Config

Signatures

Files

a5145aa8d06581dd98076826b49be980_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a35c159077135287f295aebd2d0e9705

Code Sign

34:6f:fe:9f:35:97:28:a3:4b:a3:5a:93:7a:36:42:6e
Certificate

Issuer

CN=Root Agency

Not Before

21/09/2011, 10:46

Not After

31/12/2039, 23:59

Subject

CN=Joe's-Software-Emporium

10:a6:5b:59:13:1c:35:40:f5:cb:af:71:d8:b7:06:3f:c0:fb:ce:e1
Signer

Actual PE Digest

10:a6:5b:59:13:1c:35:40:f5:cb:af:71:d8:b7:06:3f:c0:fb:ce:e1

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glViewport
glTranslated
glTranslatef
glEvalMesh1
glTexGend
glEvalCoord1d
glColorMaterial
glEvalPoint2
glColor4s
glCallLists
glGetError
glLoadIdentity
glFogf
glIndexs
glIndexf
glScaled
glColor3f
glAccum
glRotatef
glReadBuffer
glColor3s
glEvalCoord2f
glIndexiv
glTexEnvi
glIndexfv
glMapGrid2f
glCopyTexSubImage2D
glColor3i
glCopyTexImage2D
glColor4i
glIndexdv
glIndexd
glGetFloatv
glBindTexture
glAlphaFunc
glScissor
glMapGrid1d
glTexCoord2dv
glTexCoord4iv
glGetPointerv
glClipPlane
glNormalPointer
glPopClientAttrib
glRasterPos4fv
glPixelTransferi
glHint
glCopyTexImage1D
glGetClipPlane
glVertex2f
glEdgeFlagPointer
glDrawBuffer
glRectd
glTexGenf
glVertex4d
glMap1d
glIndexi
glTexEnvf
glIndexsv
glColor3b
glEvalCoord2d
glColor4b
glGetDoublev
glCopyPixels
glDrawPixels
glScalef
glEvalCoord1f
glColor4f
glColor4d
glTexGeni
glColor3d
glEvalPoint1
glGetIntegerv
glTexCoord3i
glMapGrid1f
glMapGrid2d
glVertex2i
glFogi
glTexCoord3d

glu32

gluOrtho2D
gluNewNurbsRenderer
gluBuild1DMipmaps
gluTessBeginContour
gluTessEndContour
gluBeginSurface
gluPartialDisk
gluPerspective
gluPwlCurve
gluGetNurbsProperty
gluEndSurface
gluBeginTrim
gluBeginCurve
gluScaleImage
gluNewQuadric
gluDisk
gluTessProperty
gluNurbsProperty
gluTessBeginPolygon
gluTessVertex

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

kernel32

ExitProcess
GetProcAddress
VirtualAlloc
GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a35c159077135287f295aebd2d0e9705

Code Sign

34:6f:fe:9f:35:97:28:a3:4b:a3:5a:93:7a:36:42:6eCertificate

10:a6:5b:59:13:1c:35:40:f5:cb:af:71:d8:b7:06:3f:c0:fb:ce:e1Signer

Headers

File Characteristics

Imports

opengl32

glu32

msvcrt

kernel32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 89KB - Virtual size: 156KB

34:6f:fe:9f:35:97:28:a3:4b:a3:5a:93:7a:36:42:6e
Certificate

10:a6:5b:59:13:1c:35:40:f5:cb:af:71:d8:b7:06:3f:c0:fb:ce:e1
Signer

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 89KB - Virtual size: 156KB