f3074b4b3dca7f69f06de291a68ad034_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

Static

static

1

f3074b4b3d...18.exe

windows7-x64

f3074b4b3d...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f3074b4b3dca7f69f06de291a68ad034_JaffaCakes118.exe

Resource

win7-20240221-en

darkcomet yepsrv evasion persistence rat trojan

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

f3074b4b3dca7f69f06de291a68ad034_JaffaCakes118.exe

Resource

win10v2004-20240412-en

darkcomet yepsrv evasion persistence rat trojan

windows10-2004-x64

16 signatures

150 seconds

General

Target

f3074b4b3dca7f69f06de291a68ad034_JaffaCakes118
Size

852KB
MD5

f3074b4b3dca7f69f06de291a68ad034
SHA1

10c96d67c4fdd062fd15edbb68e15bab3c5db7d1
SHA256

123a0679375e02308a5fcdb9e1b33e90ca4692ce1be567787138ec26532f6583
SHA512

8111e9fd7454f23f7b0bd1c6c006b995f6ae015571062564d5ec06991a949b210513a2190d22747cf74a260181bab69a4a3d899cabf45ac69937cf1e175eb913
SSDEEP

12288:vj9I9J5eZy5Hwb3S/a6eFNG2L4T0DT1K2B92hj/St1MyaCcb45do4JbxH+jxY:xIXOTb39Lxij41MyN84XFHHYxY

Score

1^/10

Malware Config

Signatures

Files

f3074b4b3dca7f69f06de291a68ad034_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

Certificate

Issuer

CN=www.clud-intim.com,OU=Game Design,O=clud-intim.com,L=Clue villie,ST=Clue,C=mt,1.2.840.113549.1.9.1=#0c16636f6e7461637440636c75642d696e74696d2e636f6d

Not Before

18/06/2015, 05:29

Not After

17/06/2016, 05:29

Subject

CN=www.clud-intim.com,OU=Game Design,O=clud-intim.com,L=Clue villie,ST=Clue,C=mt,1.2.840.113549.1.9.1=#0c16636f6e7461637440636c75642d696e74696d2e636f6d

e2:e5:36:b1:9d:20:fb:6f:37:21:d9:01:c5:80:d7:58:f4:d1:79:df
Signer

Actual PE Digest

e2:e5:36:b1:9d:20:fb:6f:37:21:d9:01:c5:80:d7:58:f4:d1:79:df

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 674KB - Virtual size: 673KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy