Static task
static1
Behavioral task
behavioral1
Sample
1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118
-
Size
88KB
-
MD5
1ac33b3ca54c83a67e4a3f66e6674663
-
SHA1
8353221e99c0ea41997b8e554edf15648c6ad2f9
-
SHA256
c01cd7d4cc2bd5df6c136df76c1658c1d086ce3162e85059f787b0be4fb89243
-
SHA512
d24402313b40ddb70885c0af942a06fa6ff304c2715a33a4d07d9217c5df60bcf0c7edd276f1054a053f576127f5295dbda084a3ccd58f7247e028ea2e85f37f
-
SSDEEP
768:DaHBPlpUNQdS8T1hSoZlmHi6J6TPJOnwDSngJz6TslzHTs3Oj+ujC5PHSdzD+/Oy:DahvUNgPTXujfwDPB5Q0+6Ij
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118
Files
-
1ac33b3ca54c83a67e4a3f66e6674663_JaffaCakes118.exe windows:4 windows x86 arch:x86
31d1de84170dcb7ca9768e54b10879ff
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
ord516
ord558
ord595
ord303
ord598
ord309
ord631
ord525
ord632
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord601
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord713
ord608
ord717
ProcCallEngine
ord537
ord644
ord570
ord681
ord100
ord581
Sections
.text Size: 76KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ