b3cf21b5288e15862e0f8d892dd058b8_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

3

Static

static

1

b3cf21b528...18.exe

windows7-x64

1

b3cf21b528...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b3cf21b5288e15862e0f8d892dd058b8_JaffaCakes118.exe

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b3cf21b5288e15862e0f8d892dd058b8_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

b3cf21b5288e15862e0f8d892dd058b8_JaffaCakes118
Size

19KB
MD5

b3cf21b5288e15862e0f8d892dd058b8
SHA1

60038dc313895ef129c98a1e384170c8a5a67126
SHA256

8c51a284422919b8b4502a39852c1fecc11a5d261e1826aa22eef5684689ba02
SHA512

2bc6dc10733a0d5f883c10e5217d55bd752e474b41741a718ad9d48cae889b5d95091abeb15e5f254a61be1f23d848b726eb8a096b33e1633b0e73090d16624b
SSDEEP

384:1PPuMLCY5nYba3e8a4CUpzau0p3y16B0MSQ:huMLFeb6NpWug0MSQ

Score

1^/10

Malware Config

Signatures

Files

b3cf21b5288e15862e0f8d892dd058b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0caa5e1ca16e3b577c8e40f5324f7c7a

Code Sign

50:43:96:3d:cb:ac:e0:7c:b9:d3:9e:bf:be:25:c6:c6
Certificate

Issuer

CN=Awaqiaqe

Not Before

31/12/2010, 22:00

Not After

31/12/2039, 23:59

Subject

CN=Awaqiaqe

78:5c:b0:68:9b:61:4c:5a:92:65:c4:47:62:53:99:dd:09:58:1b:9c
Signer

Actual PE Digest

78:5c:b0:68:9b:61:4c:5a:92:65:c4:47:62:53:99:dd:09:58:1b:9c

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetSystemInfo
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetLastError
GetCommandLineA
ExitProcess
GetVersion

user32

RegisterClassExA
PostQuitMessage
LoadCursorA
GetClientRect
DispatchMessageA
CreateWindowExA
DefWindowProcA

gdi32

SelectObject
DeleteDC
CreateCompatibleDC

advapi32

GetUserNameA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 768B - Virtual size: 686B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 768B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 256B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy