ff1cd21044f1659728480a5bff1d8aa9_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

ff1cd21044...18.exe

windows7-x64

6

ff1cd21044...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ff1cd21044f1659728480a5bff1d8aa9_JaffaCakes118.exe

Resource

win7-20240903-en

discovery persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ff1cd21044f1659728480a5bff1d8aa9_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

ff1cd21044f1659728480a5bff1d8aa9_JaffaCakes118
Size

20KB
MD5

ff1cd21044f1659728480a5bff1d8aa9
SHA1

b0ac1e5fc9d9a5f8d10a6ed11183929b7f297c7b
SHA256

997e577fee5db05178b5a071c662df5a87876bc2ab6d63928a5fd7662a7d47fb
SHA512

2be794ba9c72968480ebe38a837ae98e54a9aa16a20f486c69ec920380f4b012797ab974e8676cb687256dfd4cb07e10b3176e8a53c81b331548ff5feb0469ab
SSDEEP

384:DUyjWkfTI2vs70nbQ1FsFvjhCtrbwEi2f/xmwby:DUyF070nbyF8vjhaoQZmwG

Score

1^/10

Malware Config

Signatures

Files

ff1cd21044f1659728480a5bff1d8aa9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ef6f21b64207ed1575eb0e9619eef8af

Code Sign

16:5c:a0:cc:bf:50:00:57:b2:25:c1:fb:6a:de:f3:44
Certificate

Issuer

CN=Oqoawewow

Not Before

31/12/2010, 21:00

Not After

31/12/2039, 23:59

Subject

CN=Oqoawewow

d9:61:71:d8:74:5f:94:12:4a:1b:ed:74:36:09:41:e6:21:b9:09:6f
Signer

Actual PE Digest

d9:61:71:d8:74:5f:94:12:4a:1b:ed:74:36:09:41:e6:21:b9:09:6f

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCommandLineA
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetSystemInfo
GetVersion
LoadLibraryA

user32

KillTimer

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 274B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy