de91ae8df036818622c3b695372647d4_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

de91ae8df036818622c3b695372647d4_JaffaCakes118
Size

525KB
MD5

de91ae8df036818622c3b695372647d4
SHA1

263fa6f97ddcb9e349981d0d2a0974bc50cf9d7a
SHA256

b82d08313088ec3853f0656640807d928a0ee36f3849ef6b904c4b2da698dfd2
SHA512

ea6634e723dbd03318ede1d4908bcd7a1255831e139f5234d92488c38f76823e54f426e445d253a5556270b59b92fc0dc284254e84431c17d9694d9bf5db72d8
SSDEEP

12288:F8DbrsTCBk3lcoqgJcghyN/l59Cbbbbbbbbbbbbbbbbbbbf:F4nUF6gOgUb5sbbbbbbbbbbbbbbbbbbr

Score

1^/10

Malware Config

Signatures

Files

de91ae8df036818622c3b695372647d4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

481cd55225c86eb72d25469c6e6ac2bc

Code Sign

01
Certificate

Issuer

CN=C-high steel,O=C-high,C=TO

Not Before

10-01-2019 20:43

Not After

10-01-2020 20:43

Subject

CN=C-high steel,O=C-high,C=TO

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

04-01-2017 00:00

Not After

18-01-2028 00:00

Subject

CN=DigiCert SHA2 Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dd:b8:c0:d8:05:be:f8:2d:1b:81:ff:7f:f2:e6:76:3d:9a:4f:cc:fb:aa:69:e8:38:f6:2b:69:ad:34:7c:59:54
Signer

Actual PE Digest

dd:b8:c0:d8:05:be:f8:2d:1b:81:ff:7f:f2:e6:76:3d:9a:4f:cc:fb:aa:69:e8:38:f6:2b:69:ad:34:7c:59:54

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord588
ord698
MethCallEngine
ord595
ord523
ord525
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ProcCallEngine
ord574
ord100
ord614
ord616
ord619
ord650

Sections

.text
Size: 492KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

481cd55225c86eb72d25469c6e6ac2bc

Code Sign

01Certificate

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41Certificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

dd:b8:c0:d8:05:be:f8:2d:1b:81:ff:7f:f2:e6:76:3d:9a:4f:cc:fb:aa:69:e8:38:f6:2b:69:ad:34:7c:59:54Signer

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 492KB - Virtual size: 488KB

.data Size: - Virtual size: 2KB

.rsrc Size: 24KB - Virtual size: 23KB

01
Certificate

09:c0:fc:46:c8:04:42:13:b5:59:8b:af:28:4f:4e:41
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

dd:b8:c0:d8:05:be:f8:2d:1b:81:ff:7f:f2:e6:76:3d:9a:4f:cc:fb:aa:69:e8:38:f6:2b:69:ad:34:7c:59:54
Signer

.text
Size: 492KB - Virtual size: 488KB

.data
Size: - Virtual size: 2KB

.rsrc
Size: 24KB - Virtual size: 23KB