Static task
static1
Behavioral task
behavioral1
Sample
4b11ed34305199936f20eefcb7268c5f_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
4b11ed34305199936f20eefcb7268c5f_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
4b11ed34305199936f20eefcb7268c5f_JaffaCakes118
-
Size
33KB
-
MD5
4b11ed34305199936f20eefcb7268c5f
-
SHA1
411006a1c56155855bf24f9a45e47986caf05db1
-
SHA256
5d8e97f8c2c479c93bd2da60e08185ab67e1f5c89a12fa45646c385398a71dc0
-
SHA512
84e320ace9d69e2dca0fef32ab033610bc91b87f18c5bdac68af700ded76c199ced19789d3b9e1e101fa56468a476740896e752a498a68b35f907d1cc7eb527a
-
SSDEEP
768:GEJHo8AYZ0Mv5ZG6eElG18ljY09LU6rJq:rCi0MvDG6eEU0+6rJq
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4b11ed34305199936f20eefcb7268c5f_JaffaCakes118
Files
-
4b11ed34305199936f20eefcb7268c5f_JaffaCakes118.exe windows:4 windows x86 arch:x86
7cf5388bff88a25ac1289bf5381bf196
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
VirtualProtect
RequestDeviceWakeup
GetSystemTimeAsFileTime
Sections
.text Size: 1024B - Virtual size: 568B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ