5eae15d4ea09552fa956a7e93eeb62f3_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

5eae15d4ea...18.exe

windows7-x64

7

5eae15d4ea...18.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5eae15d4ea09552fa956a7e93eeb62f3_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

5eae15d4ea09552fa956a7e93eeb62f3_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

5eae15d4ea09552fa956a7e93eeb62f3_JaffaCakes118
Size

338KB
MD5

5eae15d4ea09552fa956a7e93eeb62f3
SHA1

056ea93ac87f84a97d04dd7280d830db5488edc6
SHA256

271836b0abd1c27c1b0f83f90f7eb8f3599d0c1545f903e122ab224c8030927d
SHA512

43ee28cbe8b30fcc095d059ea56eb642f13b0a4d61abcadff87a08a7fd7f49b61a5f6e32d39c8aafdc0f6347ddac0acca2f98189a7fc11a052e43c9a958d4a31
SSDEEP

6144:VMzQ9S4r2I6jMZNp0H8vIz3YX5Sze2wpchpkUJ1HOBh4kHI2:nSo6jsQTKk9h1HOA2

Score

1^/10

Malware Config

Signatures

Files

5eae15d4ea09552fa956a7e93eeb62f3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

70d8fea638a777868ed479b89ebde76d

Code Sign

5c:91:0a:e6:1d:e2:3c:a3:4f:37:d3:8f:e5:01:c3:d7
Certificate

Issuer

CN=SMCh

Not Before

22/06/2012, 05:35

Not After

31/12/2039, 23:59

Subject

CN=SMCh

Extended Key Usages

ExtKeyUsageCodeSigning

1b:f2:f4:e5:32:59:58:67:ce:33:d0:dc:a3:96:b7:4c:8e:44:13:b3
Signer

Actual PE Digest

1b:f2:f4:e5:32:59:58:67:ce:33:d0:dc:a3:96:b7:4c:8e:44:13:b3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetCommandLineA
CloseHandle
GetWindowsDirectoryW
lstrcatW
CreateFileW
VirtualAllocEx
GetModuleHandleA
GetProcAddress

user32

RegisterClassExA
CreateWindowExA
LoadIconA
LoadCursorA

advapi32

RegCloseKey
RegOpenKeyW

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy