38e4d39de43ff3bebc8f5314d283d2c8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

38e4d39de43ff3bebc8f5314d283d2c8_JaffaCakes118
Size

331KB
MD5

38e4d39de43ff3bebc8f5314d283d2c8
SHA1

5f1b80eddfe658fa35076d945f9aec45379be0be
SHA256

b8e150929f844f7b5d0b716121290f3b40d1d2223d7315d11faba194795bd276
SHA512

7a014b8de632e9036c233bb90d2c38d158cc94877e7ce470eb98bc7831d428433c3e713a96be4d9cbb695609d979e4d711e7657523b24caa6f43decd58fee52a
SSDEEP

6144:ueKD9qn0TfTiCqu/5IjI34X4DQsA0f6yytT5nSROyi41bapAgFBt2l2NH:TKBjmC7aI3fksAF39SRrj+fJ2ANH

Score

1^/10

Malware Config

Signatures

Files

38e4d39de43ff3bebc8f5314d283d2c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

26d9dded394a236cf2eff69a04370d4a

Code Sign

23:87:dd:2e:20:0f:31:43:be:4b:46:e4:83:c0:ad:44
Certificate

Issuer

CN=hlsjmjppgnw

Not Before

14/11/2011, 05:45

Not After

31/12/2039, 23:59

Subject

CN=Jhopert Ope

69:c8:10:85:fd:1e:69:04:9e:01:9b:37:eb:14:32:f1:7f:7a:a8:6f
Signer

Actual PE Digest

69:c8:10:85:fd:1e:69:04:9e:01:9b:37:eb:14:32:f1:7f:7a:a8:6f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetDesktopWindow
ReleaseDC

ole32

OleDraw

oledlg

ord4

gdi32

SetBkColor
SetTextColor

msvcrt

__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_initterm

kernel32

GetModuleHandleA
ExitProcess
PulseEvent
GetStringTypeA
GetStartupInfoA
LocalLock
GetProcAddress
GetThreadLocale
WideCharToMultiByte
HeapAlloc
GetNumberFormatA
LocalSize
WaitForMultipleObjects

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 213KB - Virtual size: 715KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ebyvh
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26d9dded394a236cf2eff69a04370d4a

Code Sign

23:87:dd:2e:20:0f:31:43:be:4b:46:e4:83:c0:ad:44Certificate

69:c8:10:85:fd:1e:69:04:9e:01:9b:37:eb:14:32:f1:7f:7a:a8:6fSigner

Headers

File Characteristics

Imports

user32

ole32

oledlg

gdi32

msvcrt

kernel32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 213KB - Virtual size: 715KB

ebyvh Size: 86KB - Virtual size: 86KB

.rsrc Size: 16KB - Virtual size: 15KB

23:87:dd:2e:20:0f:31:43:be:4b:46:e4:83:c0:ad:44
Certificate

69:c8:10:85:fd:1e:69:04:9e:01:9b:37:eb:14:32:f1:7f:7a:a8:6f
Signer

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 213KB - Virtual size: 715KB

ebyvh
Size: 86KB - Virtual size: 86KB

.rsrc
Size: 16KB - Virtual size: 15KB