55a3120ed8a3b941b2d97aa4d56319f6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

55a3120ed8a3b941b2d97aa4d56319f6_JaffaCakes118
Size

39KB
MD5

55a3120ed8a3b941b2d97aa4d56319f6
SHA1

9593d4e1e1364c42728a73bb25693477fa4d011b
SHA256

353d5f8223f1dea6623ab9cd56556c0d74c37c5c788260b28731a1b50cd9abf3
SHA512

9606d59ea7d6ca15dd55a65c0125037267201d5f68a5828c11ffe1dcd205d4d15762dd6db35b3681c4caee441e5d1a3b19c7e1496bd0b1fe875532d7894f8796
SSDEEP

768:VnfPixdXp8Rm7F5cFCGSw8eoBTdEN/o2mcE8fu8ST0/1WBXXKK:VnfMZamsFCxfbdEtTE8fu8ST0EBXXv

Score

1^/10

Malware Config

Signatures

Files

55a3120ed8a3b941b2d97aa4d56319f6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9d426930fc2eeeffe7aa276c176acb2c

Code Sign

7c:a3:04:d8:b1:0f:8a:bb:40:6d:c5:25:62:5e:97:d3
Certificate

Issuer

CN=a

Not Before

20/03/2013, 05:11

Not After

31/12/2039, 23:59

Subject

CN=a

Extended Key Usages

ExtKeyUsageCodeSigning

a7:6e:b5:82:ef:36:ea:d0:5f:5c:e8:a6:1f:9b:70:bd:ea:80:77:47
Signer

Actual PE Digest

a7:6e:b5:82:ef:36:ea:d0:5f:5c:e8:a6:1f:9b:70:bd:ea:80:77:47

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetCommandLineW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetNumberFormatW
GetStartupInfoA
GetSystemDirectoryW
GetSystemTimeAsFileTime
GetTickCount
GetVersionExW
LeaveCriticalSection
LoadLibraryA
ExitProcess
MapViewOfFile
OpenEventW
OpenFileMappingW
QueryPerformanceCounter
SetLastError
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
lstrcatW
lstrcpyW
CreateFileW
GetWindowsDirectoryW
VirtualAlloc
GetACP
GlobalAlloc
LoadLibraryW
DeleteCriticalSection

user32

LoadCursorW
LoadIconA
GetSystemMetrics
LoadIconW

advapi32

RegOpenKeyExA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

msvcrt

memcpy

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d426930fc2eeeffe7aa276c176acb2c

Code Sign

7c:a3:04:d8:b1:0f:8a:bb:40:6d:c5:25:62:5e:97:d3Certificate

Extended Key Usages

a7:6e:b5:82:ef:36:ea:d0:5f:5c:e8:a6:1f:9b:70:bd:ea:80:77:47Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

version

msvcrt

Sections

.text Size: 29KB - Virtual size: 28KB

.data Size: 1024B - Virtual size: 708B

7c:a3:04:d8:b1:0f:8a:bb:40:6d:c5:25:62:5e:97:d3
Certificate

a7:6e:b5:82:ef:36:ea:d0:5f:5c:e8:a6:1f:9b:70:bd:ea:80:77:47
Signer

.text
Size: 29KB - Virtual size: 28KB

.data
Size: 1024B - Virtual size: 708B