d0cda6844264b7a222d1aba1a63f452f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d0cda6844264b7a222d1aba1a63f452f_JaffaCakes118
Size

4.0MB
MD5

d0cda6844264b7a222d1aba1a63f452f
SHA1

8e9dd0326cf898815b57e254dda97b1f47a4807f
SHA256

07eb5a8bcdc98eba89d6e3f1cfd28857cd079462e1cfb2baeec073af3d19c7d4
SHA512

cbebf335c79e111149967e9b84915b65124bfe1e0a6a024eac1f96de96e746e54fe966ff53c40ed0599eadc31fa3937111800f24e0e379ac33d5ed5972310bc2
SSDEEP

6144:MQZZLBFFRt4T8vvVxa9m2xc440m7klZtHd8BH3HUILLEgU:MmDt4T8za9mgvt98BXHUILLE

Score

1^/10

Malware Config

Signatures

Files

d0cda6844264b7a222d1aba1a63f452f_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ae827e1d77f75e0c95bb1a1a8fbc967a

Code Sign

6d:c6:bf:7d:a3:d6:b6:a8:41:6e:0b:9e:2e:b4:c6:06
Certificate

Issuer

CN=OJQSJVHIBUTMZNUFDL

Not Before

01-10-2020 07:17

Not After

31-12-2039 23:59

Subject

CN=OJQSJVHIBUTMZNUFDL

Extended Key Usages

ExtKeyUsageCodeSigning

9e:11:06:77:26:c8:7c:43:d0:24:5c:c9:58:56:ea:ad:47:5c:1a:0a
Signer

Actual PE Digest

9e:11:06:77:26:c8:7c:43:d0:24:5c:c9:58:56:ea:ad:47:5c:1a:0a

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetModuleHandleW
GetLastError
LoadLibraryExW
VirtualAlloc
HeapFree
GetProcessHeap
GetModuleHandleA
LoadLibraryW
GetProcAddress
FreeLibrary
OutputDebugStringW
GetLocalTime
WriteFile
SetFilePointer
ExpandEnvironmentStringsW
GetEnvironmentVariableW
HeapAlloc
CreateFileW
DeviceIoControl
CreateThread
WaitForSingleObject
GetCurrentProcess
CloseHandle
ExitThread
SetLastError

user32

LoadCursorA

gdi32

CreateCompatibleDC
DeleteColorSpace
DeleteEnhMetaFile
CreateHalftonePalette
CloseMetaFile
DeleteMetaFile
CreatePatternBrush
CreateMetaFileA
DeleteDC
CreateSolidBrush
CreateMetaFileW
GetEnhMetaFileW

advapi32

RegOpenKeyW
RegQueryValueExW

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae827e1d77f75e0c95bb1a1a8fbc967a

Code Sign

6d:c6:bf:7d:a3:d6:b6:a8:41:6e:0b:9e:2e:b4:c6:06Certificate

Extended Key Usages

9e:11:06:77:26:c8:7c:43:d0:24:5c:c9:58:56:ea:ad:47:5c:1a:0aSigner

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 4.0MB - Virtual size: 4.0MB

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 2KB - Virtual size: 1KB

6d:c6:bf:7d:a3:d6:b6:a8:41:6e:0b:9e:2e:b4:c6:06
Certificate

9e:11:06:77:26:c8:7c:43:d0:24:5c:c9:58:56:ea:ad:47:5c:1a:0a
Signer

.text
Size: 4.0MB - Virtual size: 4.0MB

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 2KB - Virtual size: 1KB