Static task
static1
Behavioral task
behavioral1
Sample
e585bb9926affaabdf7e031ccbf8f017_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
e585bb9926affaabdf7e031ccbf8f017_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
e585bb9926affaabdf7e031ccbf8f017_JaffaCakes118
-
Size
464KB
-
MD5
e585bb9926affaabdf7e031ccbf8f017
-
SHA1
f927105bb27f6037d893d9c6ca793e37efd9c470
-
SHA256
14b10e60af155dfb57ed84d4091fb54f62ba51d77a54e36452b840d715769cc5
-
SHA512
7be9d12d683639f57d9a7a0203d5c48d4099f7feaaf0bff71c04687604ff7da3af9c0c628f4be33763695daa640ba353da0aed2f414424feff89253c2b7eb40e
-
SSDEEP
6144:dedInhFDIHLaNwBNKNypuGzVqSUw2WuzG4IFKjZjLAbdxIM5FnxTyeKtouXkyifF:o6hFDGeNwBNptqbpWqOYyowFn8BX1iX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource e585bb9926affaabdf7e031ccbf8f017_JaffaCakes118
Files
-
e585bb9926affaabdf7e031ccbf8f017_JaffaCakes118.exe windows:4 windows x86 arch:x86
19177cdb24325538325a1b4a091df831
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetDoubleClickTime
GetClipboardOwner
DdeReconnect
kernel32
GetUserDefaultLCID
Sections
.text Size: 458KB - Virtual size: 460KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 285B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE