Static task
static1
Behavioral task
behavioral1
Sample
17260c7a1a41498c5223773d60d198a6_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
17260c7a1a41498c5223773d60d198a6_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
17260c7a1a41498c5223773d60d198a6_JaffaCakes118
-
Size
76KB
-
MD5
17260c7a1a41498c5223773d60d198a6
-
SHA1
aca2ba15ce870afaf51e33ddd46c080fce2f77ca
-
SHA256
c309303c90221022caf98eed4479db551ae93d99ed0671a640822e981f267f1c
-
SHA512
7ffb0aff3ae18a9757e0ff17f6ada8c9e17cc9f9e08e9b1ddf9735a3def94d02709ccd188ea968983be1ba6f5d9adb902967942aa66c2fee0e7b121b7c7fa599
-
SSDEEP
1536:7WxgVnuWJNwlXEW8YNVTvUBeMNzx8xjN0Mvw6lVxGZJM5lnhU:KKnxnwyWDPvUR6xyaw3M5lhU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 17260c7a1a41498c5223773d60d198a6_JaffaCakes118
Files
-
17260c7a1a41498c5223773d60d198a6_JaffaCakes118.exe windows:4 windows x86 arch:x86
e696c362fd44b4e4dbf6274e02a61b78
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
__setusermatherr
_exit
_onexit
_adjust_fdiv
fputc
exit
strcmp
_XcptFilter
strlen
fprintf
fclose
malloc
_except_handler3
__getmainargs
__p__commode
_acmdln
fwrite
_initterm
realloc
__set_app_type
free
fopen
sin
user32
GetDesktopWindow
kernel32
GetStartupInfoA
GetModuleHandleW
Sections
.text Size: 57KB - Virtual size: 57KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ