a762193b3e61de959d94c0c8c4109c09_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a762193b3e61de959d94c0c8c4109c09_JaffaCakes118
Size

33KB
MD5

a762193b3e61de959d94c0c8c4109c09
SHA1

71e3f74ba4b55ec4fe99b5d743ac425710cbea92
SHA256

41155952e31c70b0f13d67845043b662e7047be6d2a94a9c07f6a699edece153
SHA512

6674b6a4044a6a747141398b70da96f5f7b78272b4a4c49aa6877fb3ac37e12ebde243cc273a1e82cf27ac8fde158bf0db576e50f403e8388c8a5a2e19999cf6
SSDEEP

768:L+xc0fADNlUilJO++hhhhhhhhhhhhhhhhhhPkPgKPnz4eqtbJRu0:L+e0fAJlw++hhhhhhhhhhhhhhhhhhPAY

Score

1^/10

Malware Config

Signatures

Files

a762193b3e61de959d94c0c8c4109c09_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a592f582ace0c92c248a536313f964b7

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

12/05/1997, 00:00

Not After

07/01/2004, 23:59

Subject

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

6d:a2:7a:e9:29:2e:b6:dd:c0:a8:00:1d:47:6e:3b:69
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

03/12/2001, 00:00

Not After

02/12/2011, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2001 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

28/02/2001, 00:00

Not After

06/01/2004, 23:59

Subject

CN=VeriSign Time Stamping Service,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

76:80:32:06:47:30:c0:30:37:44:bf:fd:0e:6f:3b:90
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2001 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Not Before

13/11/2003, 00:00

Not After

21/11/2004, 23:59

Subject

CN=Symantec Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Symantec Research Labs,O=Symantec Corporation,L=Santa Monica,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7e:90:d1:26:1e:da:3d:23:95:60:81:a1:0b:c3:3a:ce:86:09:4f:48
Signer

Actual PE Digest

7e:90:d1:26:1e:da:3d:23:95:60:81:a1:0b:c3:3a:ce:86:09:4f:48

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

msvcr70

_exit
_XcptFilter
_cexit
exit
_acmdln
_amsg_exit
__getmainargs
_initterm
_c_exit
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__dllonexit
_onexit
_controlfp
_except_handler3
__setusermatherr

kernel32

GetStartupInfoA
GetModuleHandleA

Sections

.text
Size: 1024B - Virtual size: 858B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 692B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a592f582ace0c92c248a536313f964b7

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3Certificate

6d:a2:7a:e9:29:2e:b6:dd:c0:a8:00:1d:47:6e:3b:69Certificate

Extended Key Usages

Key Usages

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9dCertificate

Extended Key Usages

Key Usages

76:80:32:06:47:30:c0:30:37:44:bf:fd:0e:6f:3b:90Certificate

Extended Key Usages

Key Usages

7e:90:d1:26:1e:da:3d:23:95:60:81:a1:0b:c3:3a:ce:86:09:4f:48Signer

Headers

File Characteristics

Imports

shell32

msvcr70

kernel32

Sections

.text Size: 1024B - Virtual size: 858B

.rdata Size: 1024B - Virtual size: 692B

.data Size: 512B - Virtual size: 48B

.rsrc Size: 25KB - Virtual size: 24KB

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

6d:a2:7a:e9:29:2e:b6:dd:c0:a8:00:1d:47:6e:3b:69
Certificate

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

76:80:32:06:47:30:c0:30:37:44:bf:fd:0e:6f:3b:90
Certificate

7e:90:d1:26:1e:da:3d:23:95:60:81:a1:0b:c3:3a:ce:86:09:4f:48
Signer

.text
Size: 1024B - Virtual size: 858B

.rdata
Size: 1024B - Virtual size: 692B

.data
Size: 512B - Virtual size: 48B

.rsrc
Size: 25KB - Virtual size: 24KB