0d245e80319a42993e28a1dfdb4e4500_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d245e80319a42993e28a1dfdb4e4500_JaffaCakes118
Size

2.4MB
MD5

0d245e80319a42993e28a1dfdb4e4500
SHA1

d518b2c29ec2046aae525e0034a1e8d27bbb1de8
SHA256

d3046aed647723abf2da025e3306b9d99c312d0b21a2bd17dc240eee3177b7a0
SHA512

e65d5d85aea674f5f9e0045d1710e6f581e35c7d803b4e6784a15644e04c168692a06ea704c5927c67fc55e7283dabf8c742c9317fc69d280ee277f55f3b74fc
SSDEEP

49152:03IMQu2XG8ZoI9Z9rqyI44HppuzGxHHY4L2q5HkL+eUYWHsiJNXvkUE:03WWGoqZ92yVG/uzGNV9HkAVHL/DE

Score

1^/10

Malware Config

Signatures

Files

0d245e80319a42993e28a1dfdb4e4500_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Code Sign

47:f4:1d:13:b3:b4:7b:ac:4e:58:80:22:15:17:cf:e3
Certificate

Issuer

CN=Root Agency

Not Before

06/09/2009, 13:20

Not After

31/12/2039, 23:59

Subject

CN=iqoskds.baba,O=y,1.2.840.113549.1.9.1=#130e6b6961686677646664772e6b6b6b

a2:44:46:43:58:94:5e:fa:b5:58:d6:66:b4:bb:ac:bf:90:ce:56:24
Signer

Actual PE Digest

a2:44:46:43:58:94:5e:fa:b5:58:d6:66:b4:bb:ac:bf:90:ce:56:24

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vmp0
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.upx0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.upx1
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Code Sign

47:f4:1d:13:b3:b4:7b:ac:4e:58:80:22:15:17:cf:e3Certificate

a2:44:46:43:58:94:5e:fa:b5:58:d6:66:b4:bb:ac:bf:90:ce:56:24Signer

Headers

File Characteristics

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 3KB

vmp0 Size: 512B - Virtual size: 1B

.rsrc Size: 512B - Virtual size: 16B

.upx0 Size: 1KB - Virtual size: 1KB

.upx1 Size: 27KB - Virtual size: 27KB

.reloc Size: 1024B - Virtual size: 876B

47:f4:1d:13:b3:b4:7b:ac:4e:58:80:22:15:17:cf:e3
Certificate

a2:44:46:43:58:94:5e:fa:b5:58:d6:66:b4:bb:ac:bf:90:ce:56:24
Signer

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 3KB

vmp0
Size: 512B - Virtual size: 1B

.rsrc
Size: 512B - Virtual size: 16B

.upx0
Size: 1KB - Virtual size: 1KB

.upx1
Size: 27KB - Virtual size: 27KB

.reloc
Size: 1024B - Virtual size: 876B