Static task
static1
Behavioral task
behavioral1
Sample
Proforma invoice no.SWR-2021PI011-thailand.scr
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
Proforma invoice no.SWR-2021PI011-thailand.scr
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
Thailand-20211210-0837378-FGT-29.pdf
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
Thailand-20211210-0837378-FGT-29.pdf
Resource
win10v2004-20240226-en
General
-
Target
0a5bf2180bd2d4879dd01269d7a4ada9_JaffaCakes118
-
Size
586KB
-
MD5
0a5bf2180bd2d4879dd01269d7a4ada9
-
SHA1
878c468548a2e1f6a3e735cf100ab718828c813b
-
SHA256
cb9b9f8d8cac9d52e977d07db47ea77dac2ea3c15054c628036c080e3c40ec12
-
SHA512
feb05877e76ad6e516c7e81f0a4f3ebaed529962bc07ac1bf4d375605d5338ce41475fc32d3a76e75904205a942ea892fffd4d7c085c170db1da9f3efa0cc76f
-
SSDEEP
12288:NktfC+dV8rg8oZepXNCGHweQDgwQnCSrhU+dYtrLK6D:NxoEXNCGHwBDgZCSrhU+dYtrzD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack002/Proforma invoice no.SWR-2021PI011-thailand.scr
Files
-
0a5bf2180bd2d4879dd01269d7a4ada9_JaffaCakes118.rar
-
Proforma invoice no.SWR-2021PI011-thailand.zip.zip
-
Proforma invoice no.SWR-2021PI011-thailand.scr.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 638KB - Virtual size: 638KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Thailand-20211210-0837378-FGT-29.pdf.pdf