3aa65ca1f3377c787c2a14ff7149e9d0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3aa65ca1f3377c787c2a14ff7149e9d0_JaffaCakes118
Size

208KB
MD5

3aa65ca1f3377c787c2a14ff7149e9d0
SHA1

6506663015e0026ff20e403e5fcb2d3336e4d1e4
SHA256

cebacc9b45feef0e7bff68f149bf3d442691c928cfb7e5f7886690741ef9ef05
SHA512

969cd2966af18a4e3c03ebcc039176e92dea7402b281ef5c49130f1ee26cdee8e0b392a54c9ce5afcc7f576e24f1601b7c07bc75de69a557f0fa710e393ed64c
SSDEEP

6144:944444444444444444444444444444444444444444444444444444444444444E:Ldfa7RSqwk06

Score

1^/10

Malware Config

Signatures

Files

3aa65ca1f3377c787c2a14ff7149e9d0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

08781e07684f22f5b952d75711d6ad5f

Code Sign

0c:df:62:0d:57:34:a4:93:4f:96:e7:18:06:08:1b:a3
Certificate

Issuer

CN=fffff

Not Before

29/05/2013, 15:31

Not After

31/12/2039, 23:59

Subject

CN=fffff

Extended Key Usages

ExtKeyUsageCodeSigning

2e:fe:aa:81:0f:b0:bd:ea:68:1f:7c:b6:12:cb:a0:2f:89:10:17:f7
Signer

Actual PE Digest

2e:fe:aa:81:0f:b0:bd:ea:68:1f:7c:b6:12:cb:a0:2f:89:10:17:f7

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
GetStartupInfoW
VirtualAlloc

user32

LoadIconW
LoadIconA

advapi32

RegOpenKeyExA

msvcrt

memcpy
_XcptFilter
__argc
__argv
__dllonexit
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_ftol
_initterm
_onexit
exit
strncpy
toupper
wcscmp

Sections

.text
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 810B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08781e07684f22f5b952d75711d6ad5f

Code Sign

0c:df:62:0d:57:34:a4:93:4f:96:e7:18:06:08:1b:a3Certificate

Extended Key Usages

2e:fe:aa:81:0f:b0:bd:ea:68:1f:7c:b6:12:cb:a0:2f:89:10:17:f7Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

Sections

.text Size: 194KB - Virtual size: 194KB

.text2 Size: 2KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 810B

.data Size: 512B - Virtual size: 400B

.text3 Size: 2KB - Virtual size: 1KB

0c:df:62:0d:57:34:a4:93:4f:96:e7:18:06:08:1b:a3
Certificate

2e:fe:aa:81:0f:b0:bd:ea:68:1f:7c:b6:12:cb:a0:2f:89:10:17:f7
Signer

.text
Size: 194KB - Virtual size: 194KB

.text2
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 810B

.data
Size: 512B - Virtual size: 400B

.text3
Size: 2KB - Virtual size: 1KB