Static task
static1
Behavioral task
behavioral1
Sample
4dbf7ad8904de470d0ee45d38f70c68a_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4dbf7ad8904de470d0ee45d38f70c68a_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
4dbf7ad8904de470d0ee45d38f70c68a_JaffaCakes118
-
Size
32KB
-
MD5
4dbf7ad8904de470d0ee45d38f70c68a
-
SHA1
3df4dd18a81bc72728ad3dcd642d17243f66b0ec
-
SHA256
1ce2fc22faa44c9a1acea57cede517f15def0a0968557c9ed570b27c7d1d6ed4
-
SHA512
323d2f2da5ae676c52be689438dffc8805fca75dad8c9cee72365f204538a8ace88a12004c3caceb43bcbe3a6cf27cb9a3b4d5c7f42bb1e2bdf07e71b96147c1
-
SSDEEP
384:mQRDGduKuHRNiYGAh0mPqkLQmtIj/T+sN2IzP6QDY0V86c0dSO3gLFGV2lQFFX:/QuKGPiKbPqxjzp2YP6t0G5lQz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4dbf7ad8904de470d0ee45d38f70c68a_JaffaCakes118
Files
-
4dbf7ad8904de470d0ee45d38f70c68a_JaffaCakes118.exe windows:6 windows x86 arch:x86
2206307e1c8fb9a2be6e9b591c90a16f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
EnterCriticalSection
LeaveCriticalSection
LocalAlloc
lstrlenA
GetProcAddress
Sections
.text Size: 15KB - Virtual size: 15KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ