5d3268a778b2f977fcc457f299e26e0d_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

5d3268a778...18.exe

windows7-x64

8

5d3268a778...18.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5d3268a778b2f977fcc457f299e26e0d_JaffaCakes118.exe

Resource

win7-20240704-en

defense_evasion persistence

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

5d3268a778b2f977fcc457f299e26e0d_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

5d3268a778b2f977fcc457f299e26e0d_JaffaCakes118
Size

17KB
MD5

5d3268a778b2f977fcc457f299e26e0d
SHA1

094d71697b4c827b487afe85eaf5a1082fd34183
SHA256

3b86b38532fa6578bcf720c496aab0465d6dd2e932c7139bc92887921bf9383e
SHA512

82d06b98c19dfd7ff29d4cf5542d18e2941d2d8fa4c708ad97b5b4db6719777aac6303dbd7536f4b3e7c95876554ffd0b97c9ccf6bf25e09d0e32ceb2809b198
SSDEEP

384:+08DmcQ8dHpNiXZfuAJmru83pF7TZYWPuIEGJOFlN:+08DmcQ8dHpNi1uua71YWPm

Score

1^/10

Malware Config

Signatures

Files

5d3268a778b2f977fcc457f299e26e0d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

11:af:28:14:42:7f:82:ba:46:04:40:ca:66:6c:74:95
Certificate

Issuer

CN=Qizhi Software (beijing) Co. Ltd

Not Before

31/12/2007, 16:00

Not After

31/12/9998, 16:00

Subject

CN=Qizhi Software (beijing) Co. Ltd

a1:e2:d6:9b:b9:90:07:07:a8:a5:dc:ff:1e:d5:9b:fd:82:ba:6d:6e
Signer

Actual PE Digest

a1:e2:d6:9b:b9:90:07:07:a8:a5:dc:ff:1e:d5:9b:fd:82:ba:6d:6e

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.packed
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.packed
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy