Static task
static1
Behavioral task
behavioral1
Sample
15c38d463aa62c60f9ddf4cbcb0acf9c_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
15c38d463aa62c60f9ddf4cbcb0acf9c_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
15c38d463aa62c60f9ddf4cbcb0acf9c_JaffaCakes118
-
Size
82KB
-
MD5
15c38d463aa62c60f9ddf4cbcb0acf9c
-
SHA1
a5ee7b723150ab76767eb6e1710fc81200d43655
-
SHA256
b75826260394a935a3d744d114330fb40830f13bc58d74b08521b8cf96eecfb2
-
SHA512
89962d0c32c204c4971235cd80c5f95609e9e118c3f65ad79b0963a0fa7eaa4cc22aa728e6b879d4a180b28aa30289d047d5c3f35b69c6aaa171f26e46170134
-
SSDEEP
1536:HK+cjz0rWwvoC2/cKjmb2MG5F1dTC3/ncWpBzygzCwzqPWes9zBt1:q+cjIrWwvoC2vjS27VdTC3/HlzCwmOeW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 15c38d463aa62c60f9ddf4cbcb0acf9c_JaffaCakes118
Files
-
15c38d463aa62c60f9ddf4cbcb0acf9c_JaffaCakes118.exe windows:4 windows x86 arch:x86
820ab24e53af2dbafc74d24f87e40262
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
MessageBoxA
comctl32
InitCommonControls
kernel32
LoadLibraryA
GetProcAddress
Sections
.svkp Size: 49KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.svkp Size: 6KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.svkp Size: 8KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.svkp Size: 18KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE