ae2d35ca1df26cc1de806ad3889c0cd3_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

ae2d35ca1d...18.exe

windows7-x64

7

ae2d35ca1d...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ae2d35ca1df26cc1de806ad3889c0cd3_JaffaCakes118.exe

Resource

win7-20240704-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ae2d35ca1df26cc1de806ad3889c0cd3_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

ae2d35ca1df26cc1de806ad3889c0cd3_JaffaCakes118
Size

20KB
MD5

ae2d35ca1df26cc1de806ad3889c0cd3
SHA1

652f3d4fe1bd3b3ff3530700def4626c4a6ced89
SHA256

47d4f396f91b3f8c730baa5f24f47dd0d389005606bcf8f2013940402c2cb040
SHA512

1564d1f2ba430acb8e606a6369beaadd142fdc59d2111574ff8716599da375c75a39c341e7d739f183d0879e2107fc9794d0dd1de6979b956212e72d3be0220d
SSDEEP

384:CucPud1HaGIjeMBZWD7GihpwHuyYAA6f1OPFpi9iR1RtRVF:LAuLM2D6iW9Etw9ybjT

Score

1^/10

Malware Config

Signatures

Files

ae2d35ca1df26cc1de806ad3889c0cd3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2d31c11ac42b24fa76764b521ec6c616

Code Sign

51:02:ed:1b:3a:ed:7f:7e:b5:cb:81:3a:1c:dd:ef:a2
Certificate

Issuer

CN=Woreqew

Not Before

31/12/2010, 21:00

Not After

31/12/2039, 23:59

Subject

CN=Woreqew

1f:09:a8:9d:42:82:88:66:15:6a:e6:8b:8b:bc:63:03:a2:c2:85:02
Signer

Actual PE Digest

1f:09:a8:9d:42:82:88:66:15:6a:e6:8b:8b:bc:63:03:a2:c2:85:02

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetComputerNameA
GetLastError
GetModuleHandleA
ExitProcess
GetSystemDirectoryA
GetSystemInfo
GetVersion
LoadLibraryA
WaitForSingleObject
GetProcAddress

user32

KillTimer

advapi32

GetUserNameA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy