a65c8425e9c34c06c6126ff2cf8be205_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a65c8425e9c34c06c6126ff2cf8be205_JaffaCakes118
Size

17KB
MD5

a65c8425e9c34c06c6126ff2cf8be205
SHA1

110f05ea6bbce82a74d64ac2c2e72d88ff0644fa
SHA256

acbdc1046fc1bb2259b93ec182182ab44baf1e1c05a4d30f2ae087429fdcabe6
SHA512

0631abe755383efbb610dbc34069d1990a322123ecfe919dc58ed48df6507609c8bd69f465b0543a7e4a36b774b3369af71776d0bfa5daa4ec77c89d8a0b6a16
SSDEEP

384:1sUxUfVioT9kIOAWIme6+0+MaSvq17WlrNT0+s:15oZk8WTe6+Wa+q17W7T0T

Score

1^/10

Malware Config

Signatures

Files

a65c8425e9c34c06c6126ff2cf8be205_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6444584b4f33ab2b53b9720847a3f33e

Code Sign

78:cc:40:1b:8f:94:f1:a0:47:64:c7:c6:45:7f:9f:db
Certificate

Issuer

CN=Qoqoreqiraraa

Not Before

31-12-2010 22:00

Not After

31-12-2039 23:59

Subject

CN=Qoqoreqiraraa

d8:29:f4:da:91:56:6e:ef:3b:45:9a:9a:d8:89:c8:97:70:e2:cf:25
Signer

Actual PE Digest

d8:29:f4:da:91:56:6e:ef:3b:45:9a:9a:d8:89:c8:97:70:e2:cf:25

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetVersion
GetModuleHandleA
Sleep
GetLastError
GetCurrentProcess
GetCommandLineA
ExitProcess
LoadLibraryA

user32

KillTimer
LoadCursorA
LoadImageA
PostQuitMessage
RegisterClassExA
SetTimer
ShowWindow
TranslateMessage
UpdateWindow
GetClientRect
EndPaint
DispatchMessageA
DefWindowProcA
CreateWindowExA
BeginPaint
GetMessageA

gdi32

CreateCompatibleDC
DeleteDC
GetObjectA
SelectObject
BitBlt

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 256B - Virtual size: 158B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6444584b4f33ab2b53b9720847a3f33e

Code Sign

78:cc:40:1b:8f:94:f1:a0:47:64:c7:c6:45:7f:9f:dbCertificate

d8:29:f4:da:91:56:6e:ef:3b:45:9a:9a:d8:89:c8:97:70:e2:cf:25Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 850B

.data Size: 512B - Virtual size: 268B

.rsrc Size: 12KB - Virtual size: 12KB

.reloc Size: 256B - Virtual size: 158B

78:cc:40:1b:8f:94:f1:a0:47:64:c7:c6:45:7f:9f:db
Certificate

d8:29:f4:da:91:56:6e:ef:3b:45:9a:9a:d8:89:c8:97:70:e2:cf:25
Signer

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 850B

.data
Size: 512B - Virtual size: 268B

.rsrc
Size: 12KB - Virtual size: 12KB

.reloc
Size: 256B - Virtual size: 158B