29b2cee56881a457a1c2ea6f1d3c5240_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

29b2cee568...18.exe

windows7-x64

7

29b2cee568...18.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

29b2cee56881a457a1c2ea6f1d3c5240_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

29b2cee56881a457a1c2ea6f1d3c5240_JaffaCakes118.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

29b2cee56881a457a1c2ea6f1d3c5240_JaffaCakes118
Size

338KB
MD5

29b2cee56881a457a1c2ea6f1d3c5240
SHA1

e1c48e34018195b2f08ca144a50c5d921d4c54a1
SHA256

e5cf4cb9a47f85a9a77f5b56d5885c3dc475337535e193b868720c9916bfe21f
SHA512

73dfa46e11297c9e2ecf4ac85a75607c62dab5d843bb1ac190dc92532df2ff7233e77b9dce75649b4ba6b837c28d0d9a467754ead75915bfabb69a279baf8560
SSDEEP

6144:zMzQ9SIr2I6jmZNp0H8vIz3YX5Sze2wpchpkUJ1HhBh4kHIbh:dSY6jiQTKk9h1HhAl

Score

1^/10

Malware Config

Signatures

Files

29b2cee56881a457a1c2ea6f1d3c5240_JaffaCakes118
.exe windows:4 windows x86 arch:x86

70d8fea638a777868ed479b89ebde76d

Code Sign

5c:91:0a:e6:1d:e2:3c:a3:4f:37:d3:8f:e5:01:c3:d7
Certificate

Issuer

CN=SMCh

Not Before

22/06/2012, 05:35

Not After

31/12/2039, 23:59

Subject

CN=SMCh

Extended Key Usages

ExtKeyUsageCodeSigning

1a:8b:16:08:50:1a:b2:64:c9:6d:78:f9:cb:3d:93:3d:f6:05:1e:ba
Signer

Actual PE Digest

1a:8b:16:08:50:1a:b2:64:c9:6d:78:f9:cb:3d:93:3d:f6:05:1e:ba

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetCommandLineA
CloseHandle
GetWindowsDirectoryW
lstrcatW
CreateFileW
VirtualAllocEx
GetModuleHandleA
GetProcAddress

user32

RegisterClassExA
CreateWindowExA
LoadIconA
LoadCursorA

advapi32

RegCloseKey
RegOpenKeyW

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy