Static task
static1
Behavioral task
behavioral1
Sample
663bd5680043ed438a43cbcf80379654_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
663bd5680043ed438a43cbcf80379654_JaffaCakes118
-
Size
140KB
-
MD5
663bd5680043ed438a43cbcf80379654
-
SHA1
cfaa08ea4843c6aae0c5e19d70ad2d86333e9e2e
-
SHA256
987c0d5b77345fdb979da45817424b80f08416ece53e67693b80c041228ae37e
-
SHA512
851cff7c02c60fa19c526e6d8b2ea29b3ea674a92d5cf94469cab5b668de4cfff2da56d0eef37d064910099521e1566fd79a08f73bae34cfbd8c2f5a15fc5126
-
SSDEEP
3072:Hyb5zxdwWjXhBqm9NCbg1UbIDzblnfiw:gdRDhBqm9NC81WInblnx
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 663bd5680043ed438a43cbcf80379654_JaffaCakes118
Files
-
663bd5680043ed438a43cbcf80379654_JaffaCakes118.exe windows:6 windows x86 arch:x86
b7f2e1bca618e79fd3f57e6af28a44df
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
SetTextCharacterExtra
LPtoDP
cfgmgr32
CM_Add_Res_Des
kernel32
GetModuleHandleA
FreeConsole
GetConsoleCP
GetConsoleOutputCP
GetConsoleWindow
WritePrivateProfileStructW
SetConsoleCursorInfo
GetBinaryTypeA
oleaut32
VarUI2FromBool
VarR8FromI4
VarBstrFromUI4
advapi32
QueryUsersOnEncryptedFile
CryptSignHashA
user32
InternalGetWindowText
GetWindowTextLengthA
DrawMenuBar
shell32
ShellExecuteExA
Sections
.text Size: 92KB - Virtual size: 88KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 808B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.crt Size: 36KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ