fe592f24de1afbe4467550604cc81428_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fe592f24de1afbe4467550604cc81428_JaffaCakes118
Size

238KB
MD5

fe592f24de1afbe4467550604cc81428
SHA1

cc3cea55eda18acdb8cfdc77b4056cc9c3d82ca6
SHA256

98a60e8b5d2c352a12e7354c9edb5453c42817d04bfa7e19b413e7522960393d
SHA512

0026cb3c55e305a913e9cbe321ec874ffae32508dffaecddfacd7236745a2c26d45a7b9f424d2d8f882bccb4b54915b0302b6be461b661406da20f2106866c68
SSDEEP

6144:yshhK4IyjN1w3LykDo9uNnaC9T63amU6F8Bc6:yqhK4DE3W0o9YF9e3amPF8e6

Score

1^/10

Malware Config

Signatures

Files

fe592f24de1afbe4467550604cc81428_JaffaCakes118
.exe windows:5 windows x86 arch:x86

216565510cd780fa4a2daf9777267441

Code Sign

51:23:09:d5:d0:a2:b9:8c:42:fb:c1:82:e7:8e:4e:92
Certificate

Issuer

CN=w466666345uy inc

Not Before

28/01/2012, 07:40

Not After

31/12/2039, 23:59

Subject

CN=w466666345uy inc

Extended Key Usages

ExtKeyUsageCodeSigning

a3:b4:c6:e0:ec:82:5e:6d:86:fc:62:d1:e1:67:8a:e2:42:29:c5:a5
Signer

Actual PE Digest

a3:b4:c6:e0:ec:82:5e:6d:86:fc:62:d1:e1:67:8a:e2:42:29:c5:a5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetProcessHeap
LoadLibraryA
GetWindowsDirectoryW
lstrcatW
GetSystemInfo
CreateFileW

msvcrt

memset

user32

EnumDisplaySettingsExW
EnumPropsExA
EnumPropsExW
GetClassLongA
GetClassLongW
GetClassNameA
GetClassNameW
GetFocus
GetInputDesktop
GetInputState
GetKeyboardLayoutNameW
GetKeyboardState
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetMenuInfo
GetMenuItemInfoW
GetNextDlgTabItem
GetScrollPos
GetUserObjectInformationA
GetUserObjectInformationW
GetUserObjectSecurity
GetWindowModuleFileName
InSendMessage
InSendMessageEx
InvalidateRect
IsCharAlphaNumericA
IsCharAlphaW
IsCharLowerA
IsMenu
IsWindow
EndTask
LoadImageA
LoadImageW
LockSetForegroundWindow
MapVirtualKeyA
MapVirtualKeyExA
MessageBoxIndirectW
MessageBoxW
MonitorFromPoint
OpenDesktopA
OpenDesktopW
OpenInputDesktop
OpenWindowStationA
PeekMessageA
RegisterClassW
RegisterClipboardFormatA
RegisterDeviceNotificationA
SendIMEMessageExA
SendMessageCallbackA
SetDlgItemTextA
SetFocus
SetMenuDefaultItem
SetMenuItemInfoA
SetRect
SetUserObjectInformationW
SetWindowPlacement
SetWindowRgn
ShowOwnedPopups
TileChildWindows
TileWindows
ToAsciiEx
TrackMouseEvent
TranslateAccelerator
UnhookWinEvent
VkKeyScanExW
WINNLSGetEnableStatus
wvsprintfA
DrawTextExA
DrawMenuBar
DrawFrame
DlgDirSelectExA
DlgDirListComboBoxA
DispatchMessageA
DeferWindowPos
DefWindowProcA
DefDlgProcA
DdeUninitialize
DdeSetQualityOfService
DdeDisconnectList
CopyAcceleratorTableW
CloseClipboard
ClipCursor
CheckMenuRadioItem
CharLowerW
ChangeDisplaySettingsW
CallWindowProcW
BeginDeferWindowPos
AdjustWindowRect
LoadCursorFromFileA

comdlg32

ChooseFontW
ChooseColorW
FindTextA
FindTextW
GetFileTitleA
CommDlgExtendedError
ChooseFontA
ReplaceTextW
ReplaceTextA
PrintDlgW
PrintDlgExW
PrintDlgExA
PrintDlgA
PageSetupDlgW
PageSetupDlgA
GetSaveFileNameW
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
GetFileTitleW
ChooseColorA

advapi32

RegOpenKeyExW

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text3
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

216565510cd780fa4a2daf9777267441

Code Sign

51:23:09:d5:d0:a2:b9:8c:42:fb:c1:82:e7:8e:4e:92Certificate

Extended Key Usages

a3:b4:c6:e0:ec:82:5e:6d:86:fc:62:d1:e1:67:8a:e2:42:29:c5:a5Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

comdlg32

advapi32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 452B

.text2 Size: 1024B - Virtual size: 800B

.text3 Size: 205KB - Virtual size: 205KB

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 2KB - Virtual size: 1KB

51:23:09:d5:d0:a2:b9:8c:42:fb:c1:82:e7:8e:4e:92
Certificate

a3:b4:c6:e0:ec:82:5e:6d:86:fc:62:d1:e1:67:8a:e2:42:29:c5:a5
Signer

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 452B

.text2
Size: 1024B - Virtual size: 800B

.text3
Size: 205KB - Virtual size: 205KB

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 2KB - Virtual size: 1KB