ead6a17c1d02789626bef31ba2450296_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

3

Static

static

1

ead6a17c1d...18.exe

windows7-x64

1

ead6a17c1d...18.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ead6a17c1d02789626bef31ba2450296_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ead6a17c1d02789626bef31ba2450296_JaffaCakes118.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ead6a17c1d02789626bef31ba2450296_JaffaCakes118
Size

19KB
MD5

ead6a17c1d02789626bef31ba2450296
SHA1

caeaf4e5a1bd89a6cf9c24a99a9cd9b1e51a732d
SHA256

2aa9659160e45048a4797c3a49681398d8ffb81cb44e9446500ab8a5e8534e78
SHA512

a55413df1d7e82678b7b4d98bf8abaef94ff071b240bc7d50fec32218fe558d760cc76194c4536a8fcb2b91060f247ff5725ec584be17375f9153ac196758d1d
SSDEEP

192:cJuPNpSYvp1jA6kHnWN0k7rEmYAw1bBrSN4VsjjNA+v90/hLA:cdYyHnWN0k7rz81b8wsjZH0/xA

Score

1^/10

Malware Config

Signatures

Files

ead6a17c1d02789626bef31ba2450296_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d49e0b77addd086ebc177ace5611371f

Code Sign

37:43:a0:47:fa:3f:68:65:b6:b6:be:3d:96:ce:5a:6c
Certificate

Issuer

CN=Ariaaqiwirea

Not Before

14/03/2012, 11:01

Not After

31/12/2039, 23:59

Subject

CN=Ariaaqiwirea

c4:a8:b5:a8:8d:2c:c8:41:cc:93:8e:9f:41:ea:6d:be:63:61:80:5c
Signer

Actual PE Digest

c4:a8:b5:a8:8d:2c:c8:41:cc:93:8e:9f:41:ea:6d:be:63:61:80:5c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
Sleep
VirtualFree
LoadLibraryA

user32

UpdateWindow
DispatchMessageA
ShowWindow
RegisterClassExA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 330B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256B - Virtual size: 138B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 270B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy