Static task
static1
Behavioral task
behavioral1
Sample
1a1da76036cc258fde2329d78fa5e537_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1a1da76036cc258fde2329d78fa5e537_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
1a1da76036cc258fde2329d78fa5e537_JaffaCakes118
-
Size
111KB
-
MD5
1a1da76036cc258fde2329d78fa5e537
-
SHA1
c20e8c05731e1ee27338ab6e2571c1ef6ee188de
-
SHA256
18da18aca21bae55a04937b87b016aa03cc8f1000b65379fab75dba3b9ed9ad2
-
SHA512
9c129696c559b31cbe5eea4757c6f47afd5c4de7fd0bf0d6aeb2312e6382864f0a7f602a6453cbf6bbe3ae90386a9ab1c9a07596780c7565c9be4097a36f977e
-
SSDEEP
3072:dG3ETYr7kssfAgaeJiQM3husIkVzdXV0eC:dGUk0VEeJijhPIkb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1a1da76036cc258fde2329d78fa5e537_JaffaCakes118
Files
-
1a1da76036cc258fde2329d78fa5e537_JaffaCakes118.exe windows:4 windows x86 arch:x86
a114e38281e922b118dad65cd06d64d0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
SetMapMode
LineTo
GetTextMetricsA
GetPixel
GetStockObject
SetStretchBltMode
GetClipBox
CreateCompatibleDC
SelectPalette
RectVisible
SetTextColor
GetDeviceCaps
CreatePalette
DeleteObject
SaveDC
RestoreDC
GetObjectA
SelectObject
DeleteDC
user32
TranslateMessage
GetSystemMetrics
GetParent
CharNextA
GetDesktopWindow
GetDC
kernel32
lstrlenA
lstrcmpiA
GlobalFindAtomA
lstrcmpA
lstrlenW
GetSystemTime
RemoveDirectoryW
GetCommandLineA
FindClose
RemoveDirectoryA
GetModuleHandleA
CopyFileA
DeleteFileA
lstrcmpiW
QueryPerformanceCounter
GetWindowsDirectoryA
VirtualAlloc
VirtualFree
glu32
gluNurbsCallback
Sections
.text Size: 28KB - Virtual size: 27KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 51KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ