dc2dcd03cfa2cd9b29bb166bd03d0cca_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dc2dcd03cfa2cd9b29bb166bd03d0cca_JaffaCakes118
Size

504KB
MD5

dc2dcd03cfa2cd9b29bb166bd03d0cca
SHA1

b20a775beb3910d2f6b22c4935dccec30f07f500
SHA256

17241a71a32b05a48de407e2e2dea6d8fbeabe71047b602f910f4001c6d6c0b1
SHA512

42b67a79d554ad56269cc0fa67b66c9c0cb5d9c593cae0f38891cce1d97e56484a26bde4226aec0cb3d1710866297c4774a86dd455e4f0c29c832f3571e07be3
SSDEEP

6144:15kOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOOl:15Hl+6FENdw+E1Y7KHFKNt3x+t8q14

Score

1^/10

Malware Config

Signatures

Files

dc2dcd03cfa2cd9b29bb166bd03d0cca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

89f6ba148ce2c43cce9d2d610a7a25fb

Code Sign

01
Certificate

Issuer

CN=DC main,O=DiTAS corp,C=ES

Not Before

13/02/2019, 18:30

Not After

13/02/2020, 18:30

Subject

CN=DC main,O=DiTAS corp,C=ES

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ad:0a:b2:e4:c3:d9:d2:b7:aa:91:48:7c:74:7c:5b:6c:59:11:e3:5f:60:3f:a8:14:b3:59:c1:29:1e:c2:2a:6b
Signer

Actual PE Digest

ad:0a:b2:e4:c3:d9:d2:b7:aa:91:48:7c:74:7c:5b:6c:59:11:e3:5f:60:3f:a8:14:b3:59:c1:29:1e:c2:2a:6b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord660
ord595
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord609
ProcCallEngine
ord100
ord616

Sections

.text
Size: 484KB - Virtual size: 483KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89f6ba148ce2c43cce9d2d610a7a25fb

Code Sign

01Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77Certificate

Extended Key Usages

Key Usages

ad:0a:b2:e4:c3:d9:d2:b7:aa:91:48:7c:74:7c:5b:6c:59:11:e3:5f:60:3f:a8:14:b3:59:c1:29:1e:c2:2a:6bSigner

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 484KB - Virtual size: 483KB

.data Size: - Virtual size: 2KB

.rsrc Size: 12KB - Virtual size: 8KB

01
Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

ad:0a:b2:e4:c3:d9:d2:b7:aa:91:48:7c:74:7c:5b:6c:59:11:e3:5f:60:3f:a8:14:b3:59:c1:29:1e:c2:2a:6b
Signer

.text
Size: 484KB - Virtual size: 483KB

.data
Size: - Virtual size: 2KB

.rsrc
Size: 12KB - Virtual size: 8KB