Static task
static1
Behavioral task
behavioral1
Sample
286ce5a0fe1159845c2ae460127b0908_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
286ce5a0fe1159845c2ae460127b0908_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
286ce5a0fe1159845c2ae460127b0908_JaffaCakes118
-
Size
9KB
-
MD5
286ce5a0fe1159845c2ae460127b0908
-
SHA1
9eefff66604c149c68c9f69fad8f68df2bbaffaf
-
SHA256
a287fbf428821f1d6b007228d4285b4c264e4a7c07e4185e59fe7ddb7a14e67c
-
SHA512
5d6b631726b2f88001fcfb8669d54f8094a8a3adebcd73e7ef9853a1fb58999959243599a9d7d25b7af83a89b145a76fd4ae30c328f766018668a3f362981647
-
SSDEEP
192:RW0GFJUFdv/jXLA1CMQKGfFhJ33BWOesy8pxH7mOw:k0oKrccRPf/F3BzfyGxTw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 286ce5a0fe1159845c2ae460127b0908_JaffaCakes118
Files
-
286ce5a0fe1159845c2ae460127b0908_JaffaCakes118.exe windows:4 windows x86 arch:x86
6072abbb4fc7fd4143989b2bed5c5998
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
Process32Next
Process32First
CreateToolhelp32Snapshot
GetCurrentProcessId
SetFileAttributesA
GetSystemDirectoryA
Sleep
ExitProcess
CloseHandle
WriteFile
CreateFileA
shell32
ShellExecuteA
Sections
.text Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE