a58827e422c033977491f5ed5ee06684_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a58827e422c033977491f5ed5ee06684_JaffaCakes118
Size

286KB
MD5

a58827e422c033977491f5ed5ee06684
SHA1

f6e76c91b1427bbd067cb5bfe89a26f287784410
SHA256

3a56ca3952930f9cbe3340b0100af817180a95d095a3cfd822ed4d9c9e843910
SHA512

5cc8e57bc7501a95c6f6acfa01507316e60990f205958d3df311a24795f713d32116c13fad60d0e32a06caaf1864c263bca18588e74dcaf8dd3037cce04871ea
SSDEEP

6144:Pnx/JOj/MzdHLkikO2KeHMsaxOrHzxAkEZ0Rn1I6hXhFNKFRw:/x/sj/ghkO2KesOrH9A/0hzUFRw

Score

1^/10

Malware Config

Signatures

Files

a58827e422c033977491f5ed5ee06684_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

49:ab:01:d8:0c:92:1c:75:ba:6a:dc:bc:02:65:1c:60
Certificate

Issuer

CN=Fast Turtle

Not Before

28/01/2012, 19:04

Not After

31/12/2039, 23:59

Subject

CN=Fast Turtle

20:05
Certificate

Issuer

CN=Starfield Services Root Certificate Authority,OU=http://certificates.starfieldtech.com/repository/,O=Starfield Technologies\, Inc.,L=Scottsdale,ST=Arizona,C=US

Not Before

03/05/2011, 07:00

Not After

03/05/2016, 07:00

Subject

CN=Starfield Services Timestamp Authority,OU=http://certs.starfieldtech.com/repository/,O=Starfield Technologies\, Inc.,L=Scottsdale,ST=Arizona,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:6a:35:d5:36:e1:96:ea:bf:1c:fb:de:6a:81:86:5f:9d:a5:17:5a
Signer

Actual PE Digest

c1:6a:35:d5:36:e1:96:ea:bf:1c:fb:de:6a:81:86:5f:9d:a5:17:5a

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

FST0
Size: - Virtual size: 356KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

FST1
Size: 259KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Code Sign

49:ab:01:d8:0c:92:1c:75:ba:6a:dc:bc:02:65:1c:60Certificate

20:05Certificate

Extended Key Usages

Key Usages

c1:6a:35:d5:36:e1:96:ea:bf:1c:fb:de:6a:81:86:5f:9d:a5:17:5aSigner

Headers

File Characteristics

Sections

FST0 Size: - Virtual size: 356KB

FST1 Size: 259KB - Virtual size: 260KB

.rsrc Size: 23KB - Virtual size: 24KB

49:ab:01:d8:0c:92:1c:75:ba:6a:dc:bc:02:65:1c:60
Certificate

20:05
Certificate

c1:6a:35:d5:36:e1:96:ea:bf:1c:fb:de:6a:81:86:5f:9d:a5:17:5a
Signer

FST0
Size: - Virtual size: 356KB

FST1
Size: 259KB - Virtual size: 260KB

.rsrc
Size: 23KB - Virtual size: 24KB