da04fa73abefeda4258a6df78e39cfb7_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

3

Static

static

1

da04fa73ab...18.exe

windows7-x64

1

da04fa73ab...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

da04fa73abefeda4258a6df78e39cfb7_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

da04fa73abefeda4258a6df78e39cfb7_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

da04fa73abefeda4258a6df78e39cfb7_JaffaCakes118
Size

20KB
MD5

da04fa73abefeda4258a6df78e39cfb7
SHA1

025ca8b212e1134a7ce0c0f735f0e575aa514f6f
SHA256

9a593aa4f5f10476bc47589cc8155722f693b90935ef3b698b4b81207d30d8ea
SHA512

c2259faf07e74ef44f129a880df2b7ab7f7dbf2cc9bf00aea7406038da1199135335470e59153742c52d9d9b22cb50f3784951c9fb46fc6f080e2707d373d08f
SSDEEP

192:6VMaF9eGeVUbRDl13MKsj6BbbjJ0+ciSHMmfPRh3iIVshExWYNhEmQDgRtznl3Pi:mroVUhjJBbpSpMuRVQErDQDgRtrl3Cn1

Score

1^/10

Malware Config

Signatures

Files

da04fa73abefeda4258a6df78e39cfb7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dfcc2cd801ae84b38b3345ce277af826

Code Sign

42:52:d2:6a:a2:59:3b:bb:42:d0:1e:ca:a5:a7:af:2b
Certificate

Issuer

CN=Ewereaq

Not Before

07/03/2012, 17:26

Not After

31/12/2039, 23:59

Subject

CN=Ewereaq

e2:74:07:f9:66:38:c4:ef:e6:0f:b2:6a:b9:6a:84:87:cb:f6:49:d0
Signer

Actual PE Digest

e2:74:07:f9:66:38:c4:ef:e6:0f:b2:6a:b9:6a:84:87:cb:f6:49:d0

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
LoadLibraryA
Sleep
VirtualAlloc
VirtualFree

user32

DispatchMessageA
PostQuitMessage
RegisterClassExA
ShowWindow
UpdateWindow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 370B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256B - Virtual size: 130B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 258B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy