Static task
static1
Behavioral task
behavioral1
Sample
40d556f6bb899dc01bf7e41456a8abeb_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
40d556f6bb899dc01bf7e41456a8abeb_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
40d556f6bb899dc01bf7e41456a8abeb_JaffaCakes118
-
Size
148KB
-
MD5
40d556f6bb899dc01bf7e41456a8abeb
-
SHA1
d89df92e95f4654158e3f7740002dd94b927aab2
-
SHA256
44cb868a51ebc6614f8ad130f475dd3d264049de717e5661cb7fd3b78a43fe70
-
SHA512
d04d67a74542f924b5bcf0e149e1b99b3b9ef78685872da7e9492c5452fe22c43081aa352bb110ce7da17d18cecf6a031660d07ed240bfe9b040f34788d3f738
-
SSDEEP
3072:z75Nxb4T3btf36HV4J6rmUzz/fL8L0syntarRj:x+Y4J2fr8L0sutw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 40d556f6bb899dc01bf7e41456a8abeb_JaffaCakes118
Files
-
40d556f6bb899dc01bf7e41456a8abeb_JaffaCakes118.exe windows:4 windows x86 arch:x86
149ec41b7ac6f43c2a8e7a41d602a08e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord681
ord100
Sections
.text Size: 80KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 64KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ