24eaa869588b17b0a4c2e52651831688_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

4

Static

static

1

24eaa86958...18.exe

windows7-x64

4

24eaa86958...18.exe

windows10-2004-x64

4

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

24eaa869588b17b0a4c2e52651831688_JaffaCakes118.exe

Resource

win7-20240508-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

24eaa869588b17b0a4c2e52651831688_JaffaCakes118.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

24eaa869588b17b0a4c2e52651831688_JaffaCakes118
Size

476KB
MD5

24eaa869588b17b0a4c2e52651831688
SHA1

cbf26b27c853c0e55d6e42c553b75f3a88c2797c
SHA256

3892994fb4c983d98592e01caa3de49b9459075a18a0d6e381909d0c02a3b5f2
SHA512

9841062ccedb1a9d2b2fbd9185aa7951af832e923e252035f46d95890135e3582dce4eaf641aa0d21753fe6fa7c64b23bd5847ee378c8803f4f431d26c6594cf
SSDEEP

6144:efLrW1ru6AmrHn7lS4vazTGkLx6Ekag61eLobX247EJMTuJfSBN5xFi6WF/WTFEj:eDwiZmT7/vEkE1jQEJ7EQuBS71CF/S2

Score

1^/10

Malware Config

Signatures

Files

24eaa869588b17b0a4c2e52651831688_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

17:e0:5e:ee:80:97:49:88:4f:d8:4a:37:fb:f0:59:4a
Certificate

Issuer

CN=CityInfo

Not Before

01/02/2020, 16:38

Not After

30/12/2020, 21:00

Subject

CN=CityInfo

a1:ba:3a:10:b7:5f:a0:ab:8c:0d:a0:11:ed:2b:e4:53:86:ec:bb:78
Signer

Actual PE Digest

a1:ba:3a:10:b7:5f:a0:ab:8c:0d:a0:11:ed:2b:e4:53:86:ec:bb:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 386KB - Virtual size: 543KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 22KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 10KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BODY
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy