46078a92c76ea26b8282dbfffbfb6f50_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

46078a92c76ea26b8282dbfffbfb6f50_JaffaCakes118
Size

801KB
MD5

46078a92c76ea26b8282dbfffbfb6f50
SHA1

238d7d2f6077a1ccc73cba7b12be37d478eab802
SHA256

76fa1d65c6ced79e3844d19963a029a47f0b9fc5f863d7322a1710e4fc36bdde
SHA512

cec0b0987af4b0fa40a3290ffe7a54c096dafeef085bc922ec8261cfd391afe1420e431070b32d37635a6c71a536d956ca6b02f8808b8d51e949207edb55dbd5
SSDEEP

12288:rKKvDwmkDVo7nfaYE9ufvZRR5/dRV7F8pBnSJXvPD3EMz86ZDqqgqMt0E7yi:WKbHkRo7n9E9uZRR5/Z7qCUq8qDUz0i

Score

1^/10

Malware Config

Signatures

Files

46078a92c76ea26b8282dbfffbfb6f50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

aa:22:52:59:3b:82:7c:86
Certificate

Issuer

CN=www.engyn.com,OU=PLS Department,O=Engyn Inc,L=Toronto,ST=Ontario,C=CA,1.2.840.113549.1.9.1=#0c0f616a6f736840656e67796e2e636f6d

Not Before

19-01-2017 10:56

Not After

17-01-2027 10:56

Subject

CN=www.engyn.com,OU=PLS Department,O=Engyn Inc,L=Toronto,ST=Ontario,C=CA,1.2.840.113549.1.9.1=#0c0f616a6f736840656e67796e2e636f6d

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2014 00:00

Not After

22-10-2024 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10-11-2006 00:00

Not After

10-11-2021 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7f:80:b1:1c:6b:c4:00:50:dc:38:3d:ad:7a:4e:61:42:71:4a:5c:48
Signer

Actual PE Digest

7f:80:b1:1c:6b:c4:00:50:dc:38:3d:ad:7a:4e:61:42:71:4a:5c:48

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 784KB - Virtual size: 781KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

aa:22:52:59:3b:82:7c:86Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66Certificate

Extended Key Usages

Key Usages

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1bCertificate

Extended Key Usages

Key Usages

7f:80:b1:1c:6b:c4:00:50:dc:38:3d:ad:7a:4e:61:42:71:4a:5c:48Signer

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 784KB - Virtual size: 781KB

.rsrc Size: 4KB - Virtual size: 680B

.reloc Size: 4KB - Virtual size: 12B

aa:22:52:59:3b:82:7c:86
Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

7f:80:b1:1c:6b:c4:00:50:dc:38:3d:ad:7a:4e:61:42:71:4a:5c:48
Signer

.text
Size: 784KB - Virtual size: 781KB

.rsrc
Size: 4KB - Virtual size: 680B

.reloc
Size: 4KB - Virtual size: 12B