Static task
static1
Behavioral task
behavioral1
Sample
2aa23a02345f882e5965c822e21ee921_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2aa23a02345f882e5965c822e21ee921_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
2aa23a02345f882e5965c822e21ee921_JaffaCakes118
-
Size
9KB
-
MD5
2aa23a02345f882e5965c822e21ee921
-
SHA1
987666c20203a348be97297d8bce6377d39385f3
-
SHA256
d2d167044625814eac9634b662f869234d38005a9909090d2bba5c782ae5ca8d
-
SHA512
5a1f57a579cc5f8e337faa845a2e7c94c0cd16357a1441af3bff7621cd436f572be449c88b2b2355b9cf72f25f64f7777be8418f251eb57a9afaae9705487c90
-
SSDEEP
192:UQy6o27X6ZGxrxiBBpW0E9vqA0CQXvcAOJ:Uqb6Afig0S1hQXvcA
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2aa23a02345f882e5965c822e21ee921_JaffaCakes118
Files
-
2aa23a02345f882e5965c822e21ee921_JaffaCakes118.exe windows:4 windows x86 arch:x86
224311aa6b21d66209b7612d4eb83ae0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
msvcrt
memset
shlwapi
SHGetValueA
wininet
InternetCrackUrlA
user32
wvsprintfA
ole32
CoInitialize
oleaut32
SysFreeString
Sections
.text Size: 6KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE