37b1ebf2c04405202e6642c5634f8431_JaffaCakes118 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

37b1ebf2c0...18.exe

windows7-x64

6

37b1ebf2c0...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

37b1ebf2c04405202e6642c5634f8431_JaffaCakes118.exe

Resource

win7-20240903-en

discovery persistence upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

37b1ebf2c04405202e6642c5634f8431_JaffaCakes118.exe

Resource

win10v2004-20241007-en

discovery persistence upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

37b1ebf2c04405202e6642c5634f8431_JaffaCakes118
Size

30KB
MD5

37b1ebf2c04405202e6642c5634f8431
SHA1

cf2ad1b1b4c6c1bed4d95b2880739b02d378146c
SHA256

b7da55d5ebe3480bec956b68341225cad4d119ad63a4798dabdf3c167d03d258
SHA512

f21a7474e62e44b16cc40f883361046d4ae62a3710533b8f0b8b9f0f7ac0fa60441e31ac44c1499427338964ffd86916cf5d7114147dd069dc59f5313f1cd2d4
SSDEEP

768:Bcy/ETcJLP4uKZ2JlN0L5ylvoZHZ7fiEDcbbh:b/E2PlKZ2PeuvoZHVfiEDcPh

Score

1^/10

Malware Config

Signatures

Files

37b1ebf2c04405202e6642c5634f8431_JaffaCakes118
.exe windows:4 windows x86 arch:x86

561515eae957bb1b08436d11815f3134

Code Sign

4c:fe:dc:8f:6c:14:e6:67:be:59:9d:15:12:be:eb:2d
Certificate

Issuer

CN=Eqaraqaariw

Not Before

31/12/2010, 21:00

Not After

31/12/2039, 23:59

Subject

CN=Eqaraqaariw

04:64:a1:f7:a8:7a:49:a8:4a:4c:ad:34:dd:1f:e3:8a:a6:1b:38:6f
Signer

Actual PE Digest

04:64:a1:f7:a8:7a:49:a8:4a:4c:ad:34:dd:1f:e3:8a:a6:1b:38:6f

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
TranslateMessage
ShowWindow
KillTimer

kernel32

GetCurrentThreadId
Sleep
LoadLibraryA
GetProcAddress
GetModuleHandleA
GetCommandLineA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 346B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy