a6a188e5daa35231d9998efffe118a7f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a6a188e5daa35231d9998efffe118a7f_JaffaCakes118
Size

105KB
MD5

a6a188e5daa35231d9998efffe118a7f
SHA1

05871af5c7a4d332555605afb3b1e2968c46b428
SHA256

9d1e88cf62adcd5aed4e4070aec664f7dec93314586ede7ca2c6ab457ea4322a
SHA512

9772c04f2244fd2d4e2e45e71cb7263c884989f1435b5db661fe707f35cf887eb885b579fcc1f44c55994d44db26d253f37373fee2577b1b2784be4ca8579878
SSDEEP

1536:RebsRMGnBDeYbBuK9qz2Ez90p4a/mYaKtfbnJ0ENk/P:RNR5BtbBuQqz9/9YaKtfbnJ0ENk/P

Score

1^/10

Malware Config

Signatures

Files

a6a188e5daa35231d9998efffe118a7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

004bb8f32bab7f1fe51fa700e6ce3727

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

12-05-1997 00:00

Not After

07-01-2004 23:59

Subject

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

71:78:4c:eb:cf:5a:6b:23:6e:a7:da:e5:f5:37:ca:b8
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

03-12-2001 00:00

Not After

02-12-2011 23:59

Subject

CN=VeriSign Class 3 Code Signing 2001 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

28-02-2001 00:00

Not After

06-01-2004 23:59

Subject

CN=VeriSign Time Stamping Service,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

02:5a:7d:53:80:3d:2c:4c:78:b0:8c:be:b3:cf:a8:88
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2001 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Not Before

16-07-2003 00:00

Not After

15-07-2004 23:59

Subject

CN=Fun Web Products\, Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Fun Web Products\, Inc.,L=Irvington,ST=NY,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
LoadResource
SizeofResource
FindResourceA
FreeLibrary
GetProcAddress
LoadLibraryExA
lstrcmpiA
DeleteFileA
SetFileAttributesA
lstrcatA
CopyFileA
GetModuleFileNameA
lstrcpyA
MoveFileA
GetShortPathNameA
CreateFileA
GetModuleHandleA
GetStartupInfoA
ExitProcess
GetCommandLineA
HeapAlloc
GetProcessHeap
HeapFree
GetLastError
SetLastError
GetSystemDirectoryA
GetCurrentDirectoryA
OpenFile
ReadFile
GetFileSize
WriteFile
CloseHandle
lstrlenA
CreateDirectoryA
EnumResourceNamesA
SetCurrentDirectoryA
GetWindowsDirectoryA
RemoveDirectoryA

user32

CharNextA
wsprintfA
MessageBoxA

advapi32

RegOpenKeyExA
RegCloseKey
RegDeleteKeyA
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

004bb8f32bab7f1fe51fa700e6ce3727

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3Certificate

71:78:4c:eb:cf:5a:6b:23:6e:a7:da:e5:f5:37:ca:b8Certificate

Extended Key Usages

Key Usages

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9dCertificate

Extended Key Usages

Key Usages

02:5a:7d:53:80:3d:2c:4c:78:b0:8c:be:b3:cf:a8:88Certificate

Extended Key Usages

Key Usages

Signer

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 352B

.rsrc Size: 80KB - Virtual size: 76KB

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

71:78:4c:eb:cf:5a:6b:23:6e:a7:da:e5:f5:37:ca:b8
Certificate

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

02:5a:7d:53:80:3d:2c:4c:78:b0:8c:be:b3:cf:a8:88
Certificate

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 352B

.rsrc
Size: 80KB - Virtual size: 76KB