Static task
static1
Behavioral task
behavioral1
Sample
4b8a249219b8661b8f6f9aa1440fed3a_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
4b8a249219b8661b8f6f9aa1440fed3a_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
4b8a249219b8661b8f6f9aa1440fed3a_JaffaCakes118
-
Size
30KB
-
MD5
4b8a249219b8661b8f6f9aa1440fed3a
-
SHA1
7b9d6d4018cc6f21f41cb77c9827ae26469d6f61
-
SHA256
a4ca1ef7ab17202c8b74794c42f9f653bd681d3e184cb59dec16fd3cafafe4a7
-
SHA512
8811da87eb1ab87eb0be7dd14caa9e6d3dc8d0f9948261d3becf6408071803050d1e783b62cc13b9b2f34985c48745bf14266fee6ff19e17d1e91254351b3082
-
SSDEEP
96:alAbEEO8bIbuVoO5mg+r1fMbtaocaVxItv1mX+kqpT33vbzzMxQ:+AAeb35B+R2taVaVxItC6T33zMxQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4b8a249219b8661b8f6f9aa1440fed3a_JaffaCakes118
Files
-
4b8a249219b8661b8f6f9aa1440fed3a_JaffaCakes118.exe windows:4 windows x86 arch:x86
b622ce9889cc6c0c5f000b296d2d67f9
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetDC
kernel32
CreateThread
ExitProcess
GetLastError
GetTickCount
Sleep
WaitForSingleObject
gdi32
EnumFontsA
Sections
.text Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 384B - Virtual size: 318B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ