cebb2f90b037ffb328f14434abf4ce88_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cebb2f90b037ffb328f14434abf4ce88_JaffaCakes118
Size

25KB
MD5

cebb2f90b037ffb328f14434abf4ce88
SHA1

d7b09480ba72b516ead926622faa510395369434
SHA256

d34ad8c4ed0abba8d66ab0439907842a7b0c5411f4ec11ef3e15b0c1c1d11ede
SHA512

29d179cde750cfb7912207ea14afdb8756df84361fad87d6142639d829f7f29395d36565e75a93f07533b4def074394eb8d7978c7e568e8a7a7fc59df71de1eb
SSDEEP

768:Q6kqg2+HMFUe9VEmhwjqNoS3hSf5MTuaiIN0PAV:7O8U+7wjH+hU2TuqV

Score

1^/10

Malware Config

Signatures

Files

cebb2f90b037ffb328f14434abf4ce88_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

28:b8:02:45:5a:f3:fd:7c:b0:88:eb:9b:21:5e:04:87
Certificate

Issuer

CN=Microsoft Windows

Not Before

07/01/2003, 16:00

Not After

07/01/2093, 16:00

Subject

CN=Microsoft Windows

02:35:8f
Certificate

Issuer

CN=GeoTrust Global CA,O=GeoTrust Inc.,C=US

Not Before

13/02/2006, 15:40

Not After

11/02/2016, 15:40

Subject

CN=GeoTrust TrustCenter Authenticode Timestamp I,OU=GeoTrust TrustCenter Timestamp,O=GeoTrust Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

9b:01:83:ee:8b:f5:0c:1a:4e:85:b6:d6:74:9f:a5:73:3d:8e:cc:95
Signer

Actual PE Digest

9b:01:83:ee:8b:f5:0c:1a:4e:85:b6:d6:74:9f:a5:73:3d:8e:cc:95

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.Upack
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE