d07f49e7504ec166a1831e37b87d86eb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d07f49e7504ec166a1831e37b87d86eb_JaffaCakes118
Size

85KB
MD5

d07f49e7504ec166a1831e37b87d86eb
SHA1

922dd0c553fb5e38e90c0d79b8e8c02f4b5d7b3e
SHA256

d6b3086bf6f313a22e1251c7dca5ffc6aaa6a16147e886a565ff324caf16adfe
SHA512

ca0013e6e4e06929afb779249df14302e024536d93d34140bf6bb90c291d0d5193312479b7ee8d93fcb3de9b57b7b1dd92762052a6baccdad01fed9089772507
SSDEEP

1536:1TGlbq9s5RuYRH2lOddSUqySxLxRxd1iN5jXXZ:dGBq9s5HZ/+y1Z

Score

1^/10

Malware Config

Signatures

Files

d07f49e7504ec166a1831e37b87d86eb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a35af529b86e6e62523e677f1eb58abb

Code Sign

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9
Certificate

Issuer

CN=eryer

Not Before

05/02/2012, 09:13

Not After

31/12/2039, 23:59

Subject

CN=eryer

Extended Key Usages

ExtKeyUsageCodeSigning

81:75:5d:d0:d4:25:dc:4d:60:78:39:7d:ca:47:dc:a4:a9:2f:68:3b
Signer

Actual PE Digest

81:75:5d:d0:d4:25:dc:4d:60:78:39:7d:ca:47:dc:a4:a9:2f:68:3b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetWindowsDirectoryW
lstrcatW
CreateFileW
GetSystemInfo
GetProcessHeap

msvcrt

memset

user32

DefDlgProcA
DefFrameProcA
DefMDIChildProcW
DlgDirListW
DlgDirSelectExW
DrawFrameControl
DrawStateW
EnumDesktopsW
EnumPropsW
EnumWindowStationsA
FillRect
FindWindowExW
GetAltTabInfoW
GetClassInfoA
GetClassInfoExA
GetClipCursor
GetClipboardData
GetComboBoxInfo
GetCursor
GetDCEx
GetGuiResources
GetKeyboardLayoutList
GetKeyboardState
GetMenuCheckMarkDimensions
GetMenuItemInfoA
GetMenuStringA
GetMenuStringW
GetMessageA
GetWindowLongW
GetWindowModuleFileName
GetWindowModuleFileNameW
IMPSetIMEW
DdeUninitialize
InflateRect
InvalidateRect
IsCharUpperW
IsDialogMessage
IsDialogMessageA
IsDialogMessageW
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadCursorFromFileA
LoadIconW
LoadMenuW
MonitorFromRect
OffsetRect
OpenClipboard
OpenDesktopW
OpenIcon
PackDDElParam
RealGetWindowClassW
RegisterClassW
RemovePropA
SendIMEMessageExW
SendMessageTimeoutA
SetCaretBlinkTime
SetClipboardData
SetDeskWallpaper
SetMenuItemBitmaps
SetMenuItemInfoA
SetScrollPos
SetUserObjectInformationA
SetWindowContextHelpId
SetWindowPos
SetWindowTextA
SetWindowsHookExA
SetWindowsHookExW
UnregisterClassW
UserHandleGrantAccess
ValidateRect
VkKeyScanExW
DdeSetQualityOfService
DdeReconnect
DdeNameService
DdeGetLastError
DdeFreeDataHandle
DdeCreateStringHandleW
DdeConnectList
DdeClientTransaction
CreateWindowExA
CreatePopupMenu
CreateMDIWindowW
CreateDesktopW
CloseWindowStation
ChildWindowFromPointEx
CheckMenuRadioItem
CharToOemBuffA
ChangeDisplaySettingsExA
AttachThreadInput
AllowSetForegroundWindow
InSendMessage

comdlg32

ChooseColorW
ChooseFontA
ChooseFontW
CommDlgExtendedError
FindTextA
FindTextW
GetFileTitleA
ReplaceTextW
ReplaceTextA
PrintDlgW
PrintDlgExW
PrintDlgExA
PrintDlgA
PageSetupDlgW
PageSetupDlgA
GetSaveFileNameW
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
GetFileTitleW
ChooseColorA

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a35af529b86e6e62523e677f1eb58abb

Code Sign

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9Certificate

Extended Key Usages

81:75:5d:d0:d4:25:dc:4d:60:78:39:7d:ca:47:dc:a4:a9:2f:68:3bSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

comdlg32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 484B

.text2 Size: 68KB - Virtual size: 67KB

.rsrc Size: 6KB - Virtual size: 6KB

.reloc Size: 1KB - Virtual size: 1KB

28:20:01:7a:4a:72:db:56:b8:ce:01:c6:34:c1:d6:e9
Certificate

81:75:5d:d0:d4:25:dc:4d:60:78:39:7d:ca:47:dc:a4:a9:2f:68:3b
Signer

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 484B

.text2
Size: 68KB - Virtual size: 67KB

.rsrc
Size: 6KB - Virtual size: 6KB

.reloc
Size: 1KB - Virtual size: 1KB