Static task
static1
Behavioral task
behavioral1
Sample
4383621cb9f2160e9b4e603cb3f537de_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4383621cb9f2160e9b4e603cb3f537de_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
4383621cb9f2160e9b4e603cb3f537de_JaffaCakes118
-
Size
53KB
-
MD5
4383621cb9f2160e9b4e603cb3f537de
-
SHA1
c545c8898ef673f842e843cef296ca99be2b7556
-
SHA256
930fe6476a0bce98b04e08b1b6e05d5011aba522d87ed132b6712df45c20b3ff
-
SHA512
5e2e640c372ab0f27fd19d440e354734c1c6278f3e2dcdc00f58c1732332621e635f4310dfb1dc0ee0adc4fffae9fb6f2e22192bcda85a19761512c17d195bd7
-
SSDEEP
768:SYd8aiPGM/s1dqai3mGU1HnaQoOaQHfBzJPL8oHZHu2ADGNHMHea22D+8mgEVy:5dfNMU7qiGU1H5GQ59PnEd2e+8mJVy
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4383621cb9f2160e9b4e603cb3f537de_JaffaCakes118
Files
-
4383621cb9f2160e9b4e603cb3f537de_JaffaCakes118.exe windows:5 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.data Size: 47KB - Virtual size: 816KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE