Static task
static1
Behavioral task
behavioral1
Sample
31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118
-
Size
16KB
-
MD5
31a4b10ed9c6a5e9d377c5ca3beed0da
-
SHA1
48bc4e80f26facbf2c68c3d35f371ecdff69c32a
-
SHA256
2f0e742bf563f50074c679ab5aa29451c06f4fa75b87513057aea699b8fc93e4
-
SHA512
4bd3d0b56dbaeafa17c8249b5cbbd7f198a4492b50a9f38e891c1e839e5b6b418ed751eda353bb72475c795ff417f16155592b84efb3e177fdbd3e20ee3f49c4
-
SSDEEP
192:NCynrtDINynT+vOf65RzdBe+5orqoJ6/sRyEtVdl2nhS3onAXsJn03:NCQJfC5Bj56qS6AyEHH2hS4wkk
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118
Files
-
31a4b10ed9c6a5e9d377c5ca3beed0da_JaffaCakes118.exe windows:4 windows x86 arch:x86
b8fcc0a3a549730dbc314de01001f3c5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
ord516
ord666
ord631
ord526
EVENT_SINK_AddRef
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord717
ProcCallEngine
ord537
ord570
ord100
ord616
ord581
Sections
.text Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ