Static task
static1
Behavioral task
behavioral1
Sample
60609d18eb79c35a8e2a87491ce85a70_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
60609d18eb79c35a8e2a87491ce85a70_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
60609d18eb79c35a8e2a87491ce85a70_JaffaCakes118
-
Size
39KB
-
MD5
60609d18eb79c35a8e2a87491ce85a70
-
SHA1
fa8dbf57045595934d74f35e9f1fcf60a47b9531
-
SHA256
158641941af10f8ea312ffa5aed8afeeae6f7dcd3f5e02a9b06d9f24b1525167
-
SHA512
902c862e236a10b4f7910ec9ad2c4484dce74c836da63851ea03de5ba1b89c3cf869865f071fd1b6093cd8a71f65fa4d26347976ea8516bc53e465c2b7881d71
-
SSDEEP
768:cWpurVlL2w9a8zCpG2xwn8Aan/tZqD/xz/rXa8zJlr81XhYppgUFUr:cWoPLDedngzTKcWhYpyr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 60609d18eb79c35a8e2a87491ce85a70_JaffaCakes118
Files
-
60609d18eb79c35a8e2a87491ce85a70_JaffaCakes118.exe windows:4 windows x86 arch:x86
b689e0cc7302017197a86e7af4e09e5f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCommandLineA
CreateFileA
VirtualAlloc
VirtualProtect
GetModuleHandleA
Sections
.text Size: 1024B - Virtual size: 832B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 37KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ