e9d8d2842b576fd4f6ef9dde1fea4b9f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e9d8d2842b576fd4f6ef9dde1fea4b9f_JaffaCakes118
Size

140KB
MD5

e9d8d2842b576fd4f6ef9dde1fea4b9f
SHA1

afbe549db5cb2f46e7f704937643ebeccb867ee2
SHA256

cbc8d1300f23e50bba9182a0e76a5280851c060a7578a9fe36afd727cc05cce0
SHA512

18e9a2bfa42b9fb520659bd9175ca89700d8ffd0b50042f30564bd851647c65e3ad4b0ab6eaa1b337366fc1f3bd572113da1ab31db1b0ac346b2dc6e2b83131a
SSDEEP

3072:Meq23oDzpeW7f6SgMS2jbxWGq0S2jbxWGqhr:tkzoDKSbGq0SbGqhr

Score

1^/10

Malware Config

Signatures

Files

e9d8d2842b576fd4f6ef9dde1fea4b9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d60f3e74e51370e1916c696cb3d2263

Code Sign

03:8b:0e:e2:d9:fb:b9:52:ba:7d:45:4a:9e:ca:28:57
Certificate

Issuer

CN=fffff

Not Before

18-05-2013 04:31

Not After

31-12-2039 23:59

Subject

CN=fffff

Extended Key Usages

ExtKeyUsageCodeSigning

e4:b5:ea:85:7f:57:ac:7d:3e:ef:ae:45:fa:95:f8:db:3e:b7:07:53
Signer

Actual PE Digest

e4:b5:ea:85:7f:57:ac:7d:3e:ef:ae:45:fa:95:f8:db:3e:b7:07:53

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetModuleHandleA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
lstrcmpiW
lstrcpyW
CopyFileW
lstrcpynW
lstrlenW
CreateProcessW
GetLastError
Sleep
DeleteFileW
GetSystemTimeAsFileTime
lstrcmpW
VirtualAllocEx
GetStartupInfoW
LoadLibraryW
GetProcAddress

user32

LoadIconW
LoadIconA
LoadCursorW

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data6
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data5
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data4
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text3
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d60f3e74e51370e1916c696cb3d2263

Code Sign

03:8b:0e:e2:d9:fb:b9:52:ba:7d:45:4a:9e:ca:28:57Certificate

Extended Key Usages

e4:b5:ea:85:7f:57:ac:7d:3e:ef:ae:45:fa:95:f8:db:3e:b7:07:53Signer

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 1024B - Virtual size: 1000B

.data6 Size: 512B - Virtual size: 100B

.data5 Size: 512B - Virtual size: 100B

.data Size: 1KB - Virtual size: 1KB

.data4 Size: 512B - Virtual size: 100B

.data3 Size: 512B - Virtual size: 100B

.data2 Size: 512B - Virtual size: 100B

.text3 Size: 61KB - Virtual size: 61KB

.rsrc Size: 47KB - Virtual size: 46KB

03:8b:0e:e2:d9:fb:b9:52:ba:7d:45:4a:9e:ca:28:57
Certificate

e4:b5:ea:85:7f:57:ac:7d:3e:ef:ae:45:fa:95:f8:db:3e:b7:07:53
Signer

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 1024B - Virtual size: 1000B

.data6
Size: 512B - Virtual size: 100B

.data5
Size: 512B - Virtual size: 100B

.data
Size: 1KB - Virtual size: 1KB

.data4
Size: 512B - Virtual size: 100B

.data3
Size: 512B - Virtual size: 100B

.data2
Size: 512B - Virtual size: 100B

.text3
Size: 61KB - Virtual size: 61KB

.rsrc
Size: 47KB - Virtual size: 46KB