5559de9a4bb868b215d7c5e3c7392d56_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5559de9a4bb868b215d7c5e3c7392d56_JaffaCakes118
Size

265KB
MD5

5559de9a4bb868b215d7c5e3c7392d56
SHA1

f45b1536d689356df46c420e1471e8a9a3a3fb18
SHA256

b8cc5a66464ffbc39a7725046911cae54c851bc5ebbfa275e2c1d796d0593375
SHA512

0a5498d82ae446e50e7d2867584c8e804c900815e8149fae43e6dd509da2fb52585fa519f192fa3bb412a744d50d8f19947283d4e36d3264085d2293c44e9c8c
SSDEEP

6144:V7eGQ0ULoVUb/QDbBaC5uBEKS8qxFGqcDtE9loKB7HNw:0HoWb/YEC+h4FDAEPvrw

Score

1^/10

Malware Config

Signatures

Files

5559de9a4bb868b215d7c5e3c7392d56_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4d06626d3eaa60a852d1bb297a1740dc

Code Sign

40:92:f1:63:97:44:63:8e:4e:0c:15:08:a2:42:fc:2c
Certificate

Issuer

CN=a

Not Before

04/02/2013, 16:01

Not After

31/12/2039, 23:59

Subject

CN=a

Extended Key Usages

ExtKeyUsageCodeSigning

1d:45:19:9e:fd:a4:53:d0:fb:4c:16:2f:7f:5c:ae:0f:2c:af:63:c4
Signer

Actual PE Digest

1d:45:19:9e:fd:a4:53:d0:fb:4c:16:2f:7f:5c:ae:0f:2c:af:63:c4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc

user32

DestroyMenu
DestroyWindow
DialogBoxParamW
DispatchMessageW
DrawEdge
DrawFocusRect
DrawIcon
DrawMenuBar
EnableMenuItem
EnableWindow
EndDialog
EndPaint
FillRect
GetActiveWindow
GetAsyncKeyState
GetClientRect
GetClipboardData
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetFocus
GetKeyState
GetMenu
GetMenuStringW
GetMessageW
GetParent
GetPropW
GetSubMenu
GetSysColor
GetSystemMetrics
GetWindow
GetWindowLongW
GetWindowRect
GetWindowTextW
InflateRect
InsertMenuW
InvalidateRect
IsClipboardFormatAvailable
IsDialogMessageW
IsIconic
IsWindow
IsWindowEnabled
IsWindowVisible
DeleteMenu
LoadAcceleratorsW
LoadCursorW
LoadIconW
LoadStringW
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
MoveWindow
OpenClipboard
PeekMessageW
PostMessageW
PostQuitMessage
RedrawWindow
RegisterClassW
RegisterClipboardFormatW
RegisterWindowMessageW
ReleaseDC
RemoveMenu
RemovePropW
ScreenToClient
SendMessageW
SetActiveWindow
SetClassLongW
SetCursor
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetPropW
SetRect
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
SetWindowsHookExW
ShowWindow
TranslateAcceleratorW
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
WinHelpW
wsprintfW
wvsprintfW
CreateWindowExA
LoadIconA
DefWindowProcW
DefDlgProcW
CreateWindowExW
CreateMenu
CreateDialogParamW
CopyRect
CloseClipboard
ClientToScreen
CharPrevW
CharNextW
CallWindowProcW
CallNextHookEx
BeginPaint
KillTimer

gdi32

GetStockObject

advapi32

RegCloseKey
RegSetValueExW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyW
RegOpenKeyExW
RegOpenKeyExA
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW

msvcrt

_XcptFilter
__argc
__argv
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_initterm
exit

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d06626d3eaa60a852d1bb297a1740dc

Code Sign

40:92:f1:63:97:44:63:8e:4e:0c:15:08:a2:42:fc:2cCertificate

Extended Key Usages

1d:45:19:9e:fd:a4:53:d0:fb:4c:16:2f:7f:5c:ae:0f:2c:af:63:c4Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 247KB - Virtual size: 246KB

.data Size: 512B - Virtual size: 112B

.rdata2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 1KB - Virtual size: 1KB

40:92:f1:63:97:44:63:8e:4e:0c:15:08:a2:42:fc:2c
Certificate

1d:45:19:9e:fd:a4:53:d0:fb:4c:16:2f:7f:5c:ae:0f:2c:af:63:c4
Signer

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 247KB - Virtual size: 246KB

.data
Size: 512B - Virtual size: 112B

.rdata2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 1KB - Virtual size: 1KB