f813b776ec54a9fc06b6aa7b811a244e_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

9

Static

static

1

f813b776ec...18.exe

windows7-x64

9

f813b776ec...18.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f813b776ec54a9fc06b6aa7b811a244e_JaffaCakes118.exe

Resource

win7-20240221-en

discovery evasion

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

f813b776ec54a9fc06b6aa7b811a244e_JaffaCakes118.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

10 signatures

150 seconds

General

Target

f813b776ec54a9fc06b6aa7b811a244e_JaffaCakes118
Size

2.1MB
MD5

f813b776ec54a9fc06b6aa7b811a244e
SHA1

96121ea7c9f5f8d61c644f32f53d1dd4fa55444c
SHA256

800cf3d0414f5f211ffac3e80d47c502fa7faf8a50f33ea55ef898ef94488d96
SHA512

b8ef5c8f660d133d47e715c9feacab70d663e32ef62e2c991f37da5380256748a118024ace96786455dd3c7fd4a4bf4a564c0aa7e4712e140d6406942917e455
SSDEEP

49152:lGXx8BRheuTVV6Y4OY/NMnI9uB89awh3ZnpYcjSMg6dr:GxSpFuV3JpWRE

Score

1^/10

Malware Config

Signatures

Files

f813b776ec54a9fc06b6aa7b811a244e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Code Sign

4d:f7:d7:48:4e:a7:1a:99:4b:a7:a9:e4:45:34:8d:41
Certificate

Issuer

CN=64Signer.4

Not Before

23/12/2015, 15:42

Not After

23/12/2050, 15:42

Subject

CN=64Signer.4

09:10:61:28:36:51:a7:d9:24:cb:a3:b8:e9:49:a0:a1:7d:ff:61:5b
Signer

Actual PE Digest

09:10:61:28:36:51:a7:d9:24:cb:a3:b8:e9:49:a0:a1:7d:ff:61:5b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 604KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rtoettzr
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wsecmscm
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy