a6f40de4c2552a4afb937ba0fc7ac665_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a6f40de4c2552a4afb937ba0fc7ac665_JaffaCakes118
Size

412KB
MD5

a6f40de4c2552a4afb937ba0fc7ac665
SHA1

6a37dbc5224c1638835eda526cd764455ab089ef
SHA256

f364ef3d8ee4442b5b7343cfd4aaa4adca0470a69b47a05551e7bb174e3ca4be
SHA512

2cf6507eeee6de594d5ef13c763aaa8b5f9d134edaf554789c64d5d448c27920635baea9341ab0974d640cf3d3192ed6515db77f6a1fddb004fb0b6fdb4cdce9
SSDEEP

6144:EIGZk8jqHZQlAm62tsIKlVhDSLncKXnGUuhTp2pJXhRzwVVyXEJUDSJjBU:+1j6QlN62tNgDSLnceGzNsdBsV2EyDIU

Score

1^/10

Malware Config

Signatures

Files

a6f40de4c2552a4afb937ba0fc7ac665_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c1bfb2d162caa8ea1db7a0b80b7a4e2d

Code Sign

58:63:7b:25:22:44:68:ad:4e:99:ea:6e:bf:1d:95:c6
Certificate

Issuer

CN=mwsiikjuqwr

Not Before

15/11/2011, 17:08

Not After

31/12/2039, 23:59

Subject

CN=Loren Com

35:26:d4:cf:9a:d9:0b:7e:c4:d7:42:ff:d1:41:c1:bc:eb:46:81:64
Signer

Actual PE Digest

35:26:d4:cf:9a:d9:0b:7e:c4:d7:42:ff:d1:41:c1:bc:eb:46:81:64

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItemTextA
DialogBoxParamA
EndDialog

ole32

OleSaveToStream
OleLockRunning

msvcrt

_initterm
__setusermatherr
__getmainargs
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_acmdln
exit
_XcptFilter
_exit
_adjust_fdiv

kernel32

GetStartupInfoA
ExitProcess
GetProcAddress
GetModuleHandleA
HeapFree
HeapDestroy
IsBadCodePtr
GlobalLock
LCMapStringA
OpenEventA
GetProcessHeap

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 274KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sbyefn
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1bfb2d162caa8ea1db7a0b80b7a4e2d

Code Sign

58:63:7b:25:22:44:68:ad:4e:99:ea:6e:bf:1d:95:c6Certificate

35:26:d4:cf:9a:d9:0b:7e:c4:d7:42:ff:d1:41:c1:bc:eb:46:81:64Signer

Headers

File Characteristics

Imports

user32

ole32

msvcrt

kernel32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 1024B - Virtual size: 872B

.data Size: 274KB - Virtual size: 355KB

sbyefn Size: 119KB - Virtual size: 119KB

.rsrc Size: 5KB - Virtual size: 5KB

58:63:7b:25:22:44:68:ad:4e:99:ea:6e:bf:1d:95:c6
Certificate

35:26:d4:cf:9a:d9:0b:7e:c4:d7:42:ff:d1:41:c1:bc:eb:46:81:64
Signer

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 1024B - Virtual size: 872B

.data
Size: 274KB - Virtual size: 355KB

sbyefn
Size: 119KB - Virtual size: 119KB

.rsrc
Size: 5KB - Virtual size: 5KB