af60c2ed211c0e9c85f4546e32b1a0b1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

af60c2ed211c0e9c85f4546e32b1a0b1_JaffaCakes118
Size

104KB
MD5

af60c2ed211c0e9c85f4546e32b1a0b1
SHA1

99e933d9334b4e0e28dc7856e2b1af90776653ae
SHA256

0d6771d0dcf5153556df157eea06db97fe32d151a13f3b399825d0e436d65f3d
SHA512

c0d3660efef9389df43a56091901c4148e4126a29d97ba70799995925889a83c3a6beeacb62947dec24c559b8500626ec1127f3484b766d509adeb699fe1d916
SSDEEP

3072:a1IqC+j7FQgdrHKW+7m4s+318lHoQ0nEIRR:WLjVHwHulIQHIv

Score

1^/10

Malware Config

Signatures

Files

af60c2ed211c0e9c85f4546e32b1a0b1_JaffaCakes118
.dll windows:5 windows x86 arch:x86

d9677590aea5b80f57fa83637414895c

Code Sign

b2:93:7a:58:52:14:26:91
Certificate

Issuer

CN=fencewithhisownshadowifIshouldmarryhimI

Not Before

30-08-2011 13:32

Not After

26-05-2014 13:32

Subject

CN=fencewithhisownshadowifIshouldmarryhimI

09:f4:cd:24:d3:26:0e:96:59:36:31:4b:c2:53:94:62:48:e0:73:b4
Signer

Actual PE Digest

09:f4:cd:24:d3:26:0e:96:59:36:31:4b:c2:53:94:62:48:e0:73:b4

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyW
lstrcpyA
DisableThreadLibraryCalls
GetWindowsDirectoryW
GetProcessWorkingSetSize
LoadLibraryA
SetLastError
GetFileType
GetCurrentProcessId
GetCurrentThreadId
GlobalAddAtomA
GetThreadTimes
CreateMutexA
CloseHandle
Thread32First
CopyFileW
GetLastError
GetProcAddress
IsBadReadPtr
VirtualProtect
VirtualProtectEx
GetCurrentProcess
VirtualFree
VirtualAlloc
FreeLibrary

Sections

.rdata
Size: 1024B - Virtual size: 882B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9677590aea5b80f57fa83637414895c

Code Sign

b2:93:7a:58:52:14:26:91Certificate

09:f4:cd:24:d3:26:0e:96:59:36:31:4b:c2:53:94:62:48:e0:73:b4Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.rdata Size: 1024B - Virtual size: 882B

.data Size: 512B - Virtual size: 2.0MB

.text Size: 77KB - Virtual size: 77KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 6KB - Virtual size: 6KB

b2:93:7a:58:52:14:26:91
Certificate

09:f4:cd:24:d3:26:0e:96:59:36:31:4b:c2:53:94:62:48:e0:73:b4
Signer

.rdata
Size: 1024B - Virtual size: 882B

.data
Size: 512B - Virtual size: 2.0MB

.text
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 6KB - Virtual size: 6KB