5231e860246a78dde533c6abeb8ebb04_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5231e860246a78dde533c6abeb8ebb04_JaffaCakes118
Size

16KB
MD5

5231e860246a78dde533c6abeb8ebb04
SHA1

d8fb42882ecf3780c22bef74ab53729a2b33c31f
SHA256

eac2417aa792d3080f2b00378731765ed8ab7f77beac0f052af99b653c0575b0
SHA512

bf753361c6bdabd658a0911b51158f17ebb551db37ca48c843332504284122e0ade8850ee70e5be33c65266830860cc5cff1a2d0b28695401548b78b9681684c
SSDEEP

192:CvTl1Bva5ySFagL/nKBPhISG62pW/rJRgRBtD/rVND3koxYceh4ZDow:ShOySFagjSK962pGNRgrtD/9ecn

Score

1^/10

Malware Config

Signatures

Files

5231e860246a78dde533c6abeb8ebb04_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a73818ee6ce929a61f3d475dec82923d

Code Sign

78:64:b8:3d:5e:1c:99:46:b0:af:fb:7b:34:75:94:ca
Certificate

Issuer

CN=55121212512

Not Before

14-02-2012 04:59

Not After

31-12-2039 23:59

Subject

CN=55121212512

Extended Key Usages

ExtKeyUsageCodeSigning

18:42:fe:8b:d0:60:c2:e3:38:43:dc:d8:e2:fe:17:e5:a5:8f:a8:0f
Signer

Actual PE Digest

18:42:fe:8b:d0:60:c2:e3:38:43:dc:d8:e2:fe:17:e5:a5:8f:a8:0f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA

msvcrt

memset

user32

LoadBitmapA

advapi32

RegOpenKeyExA

version

VerQueryValueA
VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerFindFileA
VerFindFileW
VerInstallFileA
VerInstallFileW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a73818ee6ce929a61f3d475dec82923d

Code Sign

78:64:b8:3d:5e:1c:99:46:b0:af:fb:7b:34:75:94:caCertificate

Extended Key Usages

18:42:fe:8b:d0:60:c2:e3:38:43:dc:d8:e2:fe:17:e5:a5:8f:a8:0fSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

version

Sections

.text Size: 2KB - Virtual size: 1KB

.text1 Size: 1024B - Virtual size: 600B

.text2 Size: 8KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 88B

.rsrc Size: 2KB - Virtual size: 1KB

78:64:b8:3d:5e:1c:99:46:b0:af:fb:7b:34:75:94:ca
Certificate

18:42:fe:8b:d0:60:c2:e3:38:43:dc:d8:e2:fe:17:e5:a5:8f:a8:0f
Signer

.text
Size: 2KB - Virtual size: 1KB

.text1
Size: 1024B - Virtual size: 600B

.text2
Size: 8KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 88B

.rsrc
Size: 2KB - Virtual size: 1KB