eb1b375fcdd7032c14b9c927681e4d48_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

eb1b375fcdd7032c14b9c927681e4d48_JaffaCakes118
Size

328KB
MD5

eb1b375fcdd7032c14b9c927681e4d48
SHA1

d42ef61b8d83b3586dd5740579218c6e8d8893dc
SHA256

4103413bf6ea99c9f2b453bb975ea721828aa3601dc4527c4e8af4914b3db2bf
SHA512

05615003f49b8bf344b9a5b047ab489fc57a7bcdcf35e7202f2e1dabaa074df5258050d00c4a1db00ef25d182ce7583eb83791c18a01646a966e6ca85d0d32d6
SSDEEP

6144:gCtjqpnuDuJP0jizwmCeN7NLjUbBwUe72y+JpomCbSM+kOddB5a8Sh:lqpMuhWgBNSBwUe72/JpomCbp+dB5FSh

Score

1^/10

Malware Config

Signatures

Files

eb1b375fcdd7032c14b9c927681e4d48_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b27a18615817a50a3768505711ef86a7

Code Sign

46:b6:50:d5:9c:4c:ba:81:4f:77:9e:ae:7b:d3:22:7b
Certificate

Issuer

CN=veohxqikipf

Not Before

15/11/2011, 10:57

Not After

31/12/2039, 23:59

Subject

CN=Loren Com

9d:96:cb:2c:e0:0e:ae:1d:6a:3b:5e:72:7d:2d:b5:e4:14:e9:41:7a
Signer

Actual PE Digest

9d:96:cb:2c:e0:0e:ae:1d:6a:3b:5e:72:7d:2d:b5:e4:14:e9:41:7a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDlgButtonChecked
SendDlgItemMessageA

ole32

OleSaveToStream
OleLockRunning

msvcrt

_adjust_fdiv
__setusermatherr
__p__fmode
__set_app_type
_except_handler3
_controlfp
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__p__commode

kernel32

GetStartupInfoA
ExitProcess
GetProcAddress
GetModuleHandleA
LocalFlags
GetDateFormatA
WideCharToMultiByte
GlobalReAlloc
LocalReAlloc
GetStringTypeW
GlobalLock
VirtualFree

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 220KB - Virtual size: 722KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rxacaz
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b27a18615817a50a3768505711ef86a7

Code Sign

46:b6:50:d5:9c:4c:ba:81:4f:77:9e:ae:7b:d3:22:7bCertificate

9d:96:cb:2c:e0:0e:ae:1d:6a:3b:5e:72:7d:2d:b5:e4:14:e9:41:7aSigner

Headers

File Characteristics

Imports

user32

ole32

msvcrt

kernel32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 1024B - Virtual size: 896B

.data Size: 220KB - Virtual size: 722KB

rxacaz Size: 79KB - Virtual size: 79KB

.rsrc Size: 16KB - Virtual size: 15KB

46:b6:50:d5:9c:4c:ba:81:4f:77:9e:ae:7b:d3:22:7b
Certificate

9d:96:cb:2c:e0:0e:ae:1d:6a:3b:5e:72:7d:2d:b5:e4:14:e9:41:7a
Signer

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 1024B - Virtual size: 896B

.data
Size: 220KB - Virtual size: 722KB

rxacaz
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 16KB - Virtual size: 15KB