4864ec0fa7b31a9a4d7e9b2b9449af99_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

4864ec0fa7...18.exe

windows7-x64

7

4864ec0fa7...18.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4864ec0fa7b31a9a4d7e9b2b9449af99_JaffaCakes118.exe

Resource

win7-20240220-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

4864ec0fa7b31a9a4d7e9b2b9449af99_JaffaCakes118.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

4864ec0fa7b31a9a4d7e9b2b9449af99_JaffaCakes118
Size

5.2MB
MD5

4864ec0fa7b31a9a4d7e9b2b9449af99
SHA1

4962bd0751b910b1a305b5e32f9c038d1a534955
SHA256

b8172c7c384160797cbdc658ddd2eeaa398d0760e7091db6a0759a7feea237de
SHA512

7c6535dd8bbf4212569666b8b7b895707b3ee3c1e2925bbe3a650466da77451cc49b3b76e1d0cb8256f4d27748c535cc3aca08ac4f88b8dd1ad4e8ac25963180
SSDEEP

98304:VzaO9KNeq2+nhPOnI7qk3Z6m/WjXE3ctBGE3/jfPIzgit1ehJxbO:VzanBRfqkJ6m+jXoctBGSdqe9O

Score

1^/10

Malware Config

Signatures

Files

4864ec0fa7b31a9a4d7e9b2b9449af99_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Code Sign

14:3e:50:45:99:d9:5c:2c:1d:9a:22:e6:cd:f5:49:40:14:9a:2b:1a
Signer

Actual PE Digest

14:3e:50:45:99:d9:5c:2c:1d:9a:22:e6:cd:f5:49:40:14:9a:2b:1a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy