ba8de427b2be4106e766c90670425d83_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ba8de427b2be4106e766c90670425d83_JaffaCakes118
Size

185KB
MD5

ba8de427b2be4106e766c90670425d83
SHA1

c58c91d28f78f1b03c8ced96c5595765b3db743c
SHA256

7d51d0986e98aae07a2e9af4cd3d1dfa9d5b141b955a2e2bbf62959a0351e780
SHA512

347d70cbd0d7bd08b65f8de0628e2b885ec0e9e029b17ca041a40f014cfef999e1fe9647a81542d2cbf0b85025c524bb8972382c8074958a8cea7b49936374f8
SSDEEP

3072:wm7il5QXF4HG2GlD8xL6Ht/YgnY1QscjZGtCtwPuk:wmE82YD8At/YyY7YtwPp

Score

1^/10

Malware Config

Signatures

Files

ba8de427b2be4106e766c90670425d83_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1857747c043cb479846bd5be2b04d87f

Code Sign

51:31:82:28:1b:07:33:b8:4a:75:e4:e4:b9:cb:7e:f6
Certificate

Issuer

CN=99818423945557345441449878765547442456928866767918827368261976484851898342761913594992196975363836497319382637632569255628795451453624967647616715124687429

Not Before

23-01-2013 18:13

Not After

31-12-2039 23:59

Subject

CN=99818423945557345441449878765547442456928866767918827368261976484851898342761913594992196975363836497319382637632569255628795451453624967647616715124687429

Extended Key Usages

ExtKeyUsageCodeSigning

77:2a:a8:fc:b4:d4:f5:d6:92:28:40:a9:14:7d:31:50:9e:0f:2e:d3
Signer

Actual PE Digest

77:2a:a8:fc:b4:d4:f5:d6:92:28:40:a9:14:7d:31:50:9e:0f:2e:d3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetProcAddress
LoadLibraryExA

user32

PostQuitMessage
DefWindowProcA
LoadIconA
LoadCursorA
GetClientRect

gdi32

DeleteEnhMetaFile
CloseEnhMetaFile
LineTo
CreateEnhMetaFileA
Rectangle
MoveToEx
PlayEnhMetaFile

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1857747c043cb479846bd5be2b04d87f

Code Sign

51:31:82:28:1b:07:33:b8:4a:75:e4:e4:b9:cb:7e:f6Certificate

Extended Key Usages

77:2a:a8:fc:b4:d4:f5:d6:92:28:40:a9:14:7d:31:50:9e:0f:2e:d3Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 175KB - Virtual size: 174KB

.data Size: 1024B - Virtual size: 688B

.rdata2 Size: 512B - Virtual size: 100B

.rsrc Size: 2KB - Virtual size: 2KB

51:31:82:28:1b:07:33:b8:4a:75:e4:e4:b9:cb:7e:f6
Certificate

77:2a:a8:fc:b4:d4:f5:d6:92:28:40:a9:14:7d:31:50:9e:0f:2e:d3
Signer

.text
Size: 175KB - Virtual size: 174KB

.data
Size: 1024B - Virtual size: 688B

.rdata2
Size: 512B - Virtual size: 100B

.rsrc
Size: 2KB - Virtual size: 2KB