Static task
static1
Behavioral task
behavioral1
Sample
103fc6ef8353ea9d2c6c0fb42f400fad_JaffaCakes118.exe
Resource
win7-20240221-en
General
-
Target
103fc6ef8353ea9d2c6c0fb42f400fad_JaffaCakes118
-
Size
100KB
-
MD5
103fc6ef8353ea9d2c6c0fb42f400fad
-
SHA1
2bb0bd235ea9b1883ea8fd9ea3a71abb0fd577e2
-
SHA256
0e4ca636d4ab331c63feb7fbccab3eb4e3678431a6349ad1eaf9b0c221af42fc
-
SHA512
e855f8a56fe0fbaf3985aef1aae6642543950f124520bbb12ea28d0f9aca75607342f13ab0179681f7972ce6598c92d273bf84edf72bc9c6db76d11ccddd4c43
-
SSDEEP
1536:cPYjc7T3UPRqadkAAK+yfU27DK1VE8oFtqtj4UEnbJ0pMFKAlGY:MYEORqnAAKhfHfBLzmkUEn4mK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 103fc6ef8353ea9d2c6c0fb42f400fad_JaffaCakes118
Files
-
103fc6ef8353ea9d2c6c0fb42f400fad_JaffaCakes118.exe windows:4 windows x86 arch:x86
14610dd0ebbc796a9a3a2ba2cdd24e79
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
user32
MessageBoxW
Sections
.text Size: 68KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE