389c67d97712764fbbff735504a5492a_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

Static

static

1

389c67d977...18.exe

windows7-x64

389c67d977...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

389c67d97712764fbbff735504a5492a_JaffaCakes118.exe

Resource

win7-20240508-en

njrat hacked trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

389c67d97712764fbbff735504a5492a_JaffaCakes118.exe

Resource

win10v2004-20240426-en

njrat hacked trojan

windows10-2004-x64

7 signatures

150 seconds

General

Target

389c67d97712764fbbff735504a5492a_JaffaCakes118
Size

223KB
MD5

389c67d97712764fbbff735504a5492a
SHA1

8644e2bd1c825a43bd44a4bd2f1de74a5ee01ff4
SHA256

20b50afb49200818bb97416e4519ec5cfd156e2da687e55bde35d0d0e791c4c7
SHA512

70f3abfcb242c29cf2dc149d05d1dbd8240d68f4421d6a47d830351351abf10690b17f30ff7bef64be9e2aeb03bc9f067aff6a021607a68f24934a0b70382641
SSDEEP

1536:E/OiLXqIPd3shmqpTh/5nhllAgh4QZ4EZ5wvxkFfl6MC4zMhKhq8YhSBRcKA6:E/OtQd7g1hfAzQl5wvqFfQMhqzhSBR1

Score

1^/10

Malware Config

Signatures

Files

389c67d97712764fbbff735504a5492a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

Certificate

Issuer

CN=www.clud-intim.com,OU=Game Design,O=clud-intim.com,L=Clue villie,ST=Clue,C=mt,1.2.840.113549.1.9.1=#0c16636f6e7461637440636c75642d696e74696d2e636f6d

Not Before

18/06/2015, 05:29

Not After

17/06/2016, 05:29

Subject

CN=www.clud-intim.com,OU=Game Design,O=clud-intim.com,L=Clue villie,ST=Clue,C=mt,1.2.840.113549.1.9.1=#0c16636f6e7461637440636c75642d696e74696d2e636f6d

79:c2:89:dc:94:32:12:03:5e:6a:54:e4:46:f4:fd:0b:7a:2a:0e:58
Signer

Actual PE Digest

79:c2:89:dc:94:32:12:03:5e:6a:54:e4:46:f4:fd:0b:7a:2a:0e:58

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy