7234d3d19f72a607e8aedce00c5bfa4b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7234d3d19f72a607e8aedce00c5bfa4b_JaffaCakes118
Size

84KB
MD5

7234d3d19f72a607e8aedce00c5bfa4b
SHA1

821ff74ca137855fa895ac1cdea41dbb069241f7
SHA256

c4cc9eb70d6c313dcdd38b50b6503a2355ae637fb95a460e52d112bbb6657b43
SHA512

86bd84c0e3e50bc496d71e4ca1fce3e1a72052707cb8c1b39a96bc67e2147066e6ff4147e4e0678f9d2a3076ee94021d8fdecbe6924c743794ad499ce6cced42
SSDEEP

384:zxJM8vcK/MnSslNQIMnFrcS7oET4jSJkvFKB2DED/JTlu6r0eFxs:1K8v6S5LFh7oET4+QQBGErJJu00ay

Score

1^/10

Malware Config

Signatures

Files

7234d3d19f72a607e8aedce00c5bfa4b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

48547ce8bf502f405c0d6321be99778f

Code Sign

6a:66:6f:ed:15:27:5f:6e:b1:db:66:a0:71:dd:b1:f3
Certificate

Issuer

CN=i5qkotmyupr8wg5othlry5xvn65wqjhszo7vq8v6iiv7rphqr6wkwugngx5g7i5vhruwzqyo5wmmylwwrrgwwq7qulzhltn6wi4hr6xih6nowu57nvgjiv66wykmhjprqjsxg7q56q8yy7sx5juiz6jl8p8m5h8jkmwuvpq7t55kkhoh8x5kjmyuljnzt6wpziw76rlqmvxrum56t6qihkryl8v4rtznkliih785pkuxljotrl74hv7lyyvqvqtwng7v45wvlz58y54kxhuri4skvkn6tm57i6ojqxhvhvkwr4islyulwsnpy67wklqjti4rvqxuo5smj647gqvt4zmn8uikk74hx4iu4n6wrr7piqpvknt7jijgmuwntpnhugkvzgz65ph5lh7kzovkyrqnunxz775lo4r66zl4grtv66rh7slhnkpv5hvysprlh8s5ig5xqpty8rxmyuiw76h8kgko78ws7plizylqv4nu8wjsppnkp5mjumm7qn58iwxp8mqukors4ziihsj55txtj4jgxonqzrrujnupxo6ihuwi8tlnj7xj8tpmhv6ilml4nhqw4l4 ixkxkr6oit

Not Before

11-12-2012 19:08

Not After

31-12-2039 23:59

Subject

CN=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 ixkxkr6oit

Extended Key Usages

ExtKeyUsageCodeSigning

9e:33:a1:15:56:ac:27:d0:88:71:ed:30:ce:2b:db:36:58:85:07:94
Signer

Actual PE Digest

9e:33:a1:15:56:ac:27:d0:88:71:ed:30:ce:2b:db:36:58:85:07:94

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FlushInstructionCache
FormatMessageW
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcessHeap
GetStartupInfoW
GetSystemTimeAsFileTime
GetTickCount
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
CreateMutexW
InterlockedDecrement
InterlockedIncrement
IsBadStringPtrA
IsBadStringPtrW
IsBadWritePtr
LeaveCriticalSection
LoadLibraryW
LocalFree
QueryPerformanceCounter
SetLastError
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WideCharToMultiByte
lstrcmpiW
lstrcpyW
lstrlenA
lstrlenW
GetCommandLineW
CloseHandle
LoadLibraryA
GetProcAddress
GetSystemDirectoryA
lstrcatA
CreateFileA
InitializeCriticalSection
VirtualAllocEx

gdi32

GetStockObject

advapi32

RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
RegOpenKeyW

msvcrt

memcpy

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48547ce8bf502f405c0d6321be99778f

Code Sign

6a:66:6f:ed:15:27:5f:6e:b1:db:66:a0:71:dd:b1:f3Certificate

Extended Key Usages

9e:33:a1:15:56:ac:27:d0:88:71:ed:30:ce:2b:db:36:58:85:07:94Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

advapi32

msvcrt

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 24KB - Virtual size: 24KB

6a:66:6f:ed:15:27:5f:6e:b1:db:66:a0:71:dd:b1:f3
Certificate

9e:33:a1:15:56:ac:27:d0:88:71:ed:30:ce:2b:db:36:58:85:07:94
Signer

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 24KB - Virtual size: 24KB