09d7e7886a7d5930c770830722a21132_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

09d7e7886a7d5930c770830722a21132_JaffaCakes118
Size

90KB
MD5

09d7e7886a7d5930c770830722a21132
SHA1

42f10a9d66cd4c69e50cfb38bb39b26e4f251292
SHA256

ac6d870768d61d005f5f95b880631a75ac54862a6da56e73b76e4ec136e8d9c8
SHA512

44ded854b6249354774e0b595987939125b75e32dddeba293966219e7ef54052c9e6765275e50f75fe174dd96a0f6ba69bc0a6c01147200b22d3fd4151929ebe
SSDEEP

1536:N6/wCIMiB4ys7p3dSMAPgAXrLoa3zzaVeS:8n7lsMmtXrpaVeS

Score

1^/10

Malware Config

Signatures

Files

09d7e7886a7d5930c770830722a21132_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

7f:24:5f:80:47:fe:cd:65
Certificate

Issuer

CN=Adler SignKey CA,O=Adler Soft Development,L=Luhansk

Not Before

09/10/2016, 00:00

Not After

09/10/2018, 00:00

Subject

CN=Adler SignKey CA,O=Adler Soft Development,L=Luhansk

6d:90:bf:ef:af:0e:d9:84
Certificate

Issuer

CN=Adler SignKey CA,O=Adler Soft Development,L=Luhansk

Not Before

09/10/2016, 00:00

Not After

09/10/2018, 00:00

Subject

CN=Adler,O=Adler Development,L=Luhansk,C=LPR,1.2.840.113549.1.9.1=#0c0e694061646c65722e62697a2e7561

Extended Key Usages

ExtKeyUsageCodeSigning

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

7f:24:5f:80:47:fe:cd:65
Certificate

Issuer

CN=Adler SignKey CA,O=Adler Soft Development,L=Luhansk

Not Before

09/10/2016, 00:00

Not After

09/10/2018, 00:00

Subject

CN=Adler SignKey CA,O=Adler Soft Development,L=Luhansk

6d:90:bf:ef:af:0e:d9:84
Certificate

Issuer

CN=Adler SignKey CA,O=Adler Soft Development,L=Luhansk

Not Before

09/10/2016, 00:00

Not After

09/10/2018, 00:00

Subject

CN=Adler,O=Adler Development,L=Luhansk,C=LPR,1.2.840.113549.1.9.1=#0c0e694061646c65722e62697a2e7561

Extended Key Usages

ExtKeyUsageCodeSigning

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

13:54:c9:6d:ce:51:02:e4:37:3d:3d:35:d8:0c:29:21:44:e3:8a:dd:3d:72:14:05:cf:92:92:ab:57:49:92:56
Signer

Actual PE Digest

13:54:c9:6d:ce:51:02:e4:37:3d:3d:35:d8:0c:29:21:44:e3:8a:dd:3d:72:14:05:cf:92:92:ab:57:49:92:56

Digest Algorithm

sha256

PE Digest Matches

true

73:fe:de:13:45:f2:60:8d:f1:6f:88:52:78:24:65:03:47:e0:5b:40
Signer

Actual PE Digest

73:fe:de:13:45:f2:60:8d:f1:6f:88:52:78:24:65:03:47:e0:5b:40

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

7f:24:5f:80:47:fe:cd:65Certificate

6d:90:bf:ef:af:0e:d9:84Certificate

Extended Key Usages

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0bCertificate

Extended Key Usages

Key Usages

7f:24:5f:80:47:fe:cd:65Certificate

6d:90:bf:ef:af:0e:d9:84Certificate

Extended Key Usages

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77Certificate

Extended Key Usages

Key Usages

13:54:c9:6d:ce:51:02:e4:37:3d:3d:35:d8:0c:29:21:44:e3:8a:dd:3d:72:14:05:cf:92:92:ab:57:49:92:56Signer

73:fe:de:13:45:f2:60:8d:f1:6f:88:52:78:24:65:03:47:e0:5b:40Signer

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 53KB - Virtual size: 53KB

.rsrc Size: 26KB - Virtual size: 26KB

.reloc Size: 512B - Virtual size: 12B

7f:24:5f:80:47:fe:cd:65
Certificate

6d:90:bf:ef:af:0e:d9:84
Certificate

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

7f:24:5f:80:47:fe:cd:65
Certificate

6d:90:bf:ef:af:0e:d9:84
Certificate

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

13:54:c9:6d:ce:51:02:e4:37:3d:3d:35:d8:0c:29:21:44:e3:8a:dd:3d:72:14:05:cf:92:92:ab:57:49:92:56
Signer

73:fe:de:13:45:f2:60:8d:f1:6f:88:52:78:24:65:03:47:e0:5b:40
Signer

.text
Size: 53KB - Virtual size: 53KB

.rsrc
Size: 26KB - Virtual size: 26KB

.reloc
Size: 512B - Virtual size: 12B