Static task
static1
Behavioral task
behavioral1
Sample
8326b3c555eeb5b93c31ebae3f1312ea_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8326b3c555eeb5b93c31ebae3f1312ea_JaffaCakes118.exe
Resource
win10v2004-20240426-en
General
-
Target
8326b3c555eeb5b93c31ebae3f1312ea_JaffaCakes118
-
Size
33KB
-
MD5
8326b3c555eeb5b93c31ebae3f1312ea
-
SHA1
d8fc2aefdc1311e4cfdebad833afacdd4d80c8e9
-
SHA256
9b618a21dd4589eca349adf316f21969424a0647f36a4fd59947406a57b22f38
-
SHA512
52286980a819faf2c0e1647e26590bbf38094450a2436c7866f8c0b2eab9233fefceb3d40a1fbc9aff635f4807b612632ea499207efe9b93cce30de1749375aa
-
SSDEEP
768:Vsi8WRj/5+y3FHA0Cy0NxtTlhLfLpttEe547D3Q3:Vp88V+GAdyELTl1tEm/3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8326b3c555eeb5b93c31ebae3f1312ea_JaffaCakes118
Files
-
8326b3c555eeb5b93c31ebae3f1312ea_JaffaCakes118.exe windows:1 windows x86 arch:x86
aefc9fab2e660d2a0275739f5cd899dc
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
GetModuleHandleA
GetProcAddress
user32
MessageBoxA
oleaut32
VariantClear
advapi32
RegCloseKey
comctl32
InitCommonControls
Sections
.MPRESS1 Size: 21KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE