3b68739bb687eefb561fcad89945bf46_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

3b68739bb6...18.dll

windows7-x64

6

3b68739bb6...18.dll

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3b68739bb687eefb561fcad89945bf46_JaffaCakes118.dll

Resource

win7-20240705-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b68739bb687eefb561fcad89945bf46_JaffaCakes118.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

3b68739bb687eefb561fcad89945bf46_JaffaCakes118
Size

40KB
MD5

3b68739bb687eefb561fcad89945bf46
SHA1

2bde6488ab9ba025fab269437e6ca39282da1706
SHA256

75f6d8cdc533edfcaf9f39d171e84b123a6b8dd074b947f0b92e3b915b0dcc49
SHA512

5c9ec21403cff329a7fdada216c735d6bbe44c3fc76a35a94bd659286a02b2d60e96805a715bb47b48cb161326cd63538fbae63ab267f4d9b31bb3fd82549f74
SSDEEP

768:ozHsh2NG6uY6G5w8IUAMmcoy33AN3ji7/znEjT+htvAJOPh6erBtUw/Yoesab0vQ:ozMh286h6G5w8IUAMmcom3AhG7/znEjj

Score

1^/10

Malware Config

Signatures

Files

3b68739bb687eefb561fcad89945bf46_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d40bf4964a49ed313f2e33cf0255a3b2

Code Sign

38:7d:56:db:4f:6f:01:af:42:b5:4d:1c:76:35:ba:ba
Certificate

Issuer

CN=Intel corp.

Not Before

31/12/2009, 21:00

Not After

31/12/2016, 21:00

Subject

CN=Intel corp.

75:67:bc:9c:c3:3f:98:01:a8:a7:32:07:94:74:d2:82:22:9c:57:e8
Signer

Actual PE Digest

75:67:bc:9c:c3:3f:98:01:a8:a7:32:07:94:74:d2:82:22:9c:57:e8

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetTempPathA
SetFilePointer
TerminateProcess
lstrcatA
LoadLibraryA
ExitProcess
GetCurrentProcess
lstrcatW
GetTempPathW
lstrlenW

user32

GetDesktopWindow

advapi32

RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey

shell32

ShellExecuteA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 282B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy