Static task
static1
Behavioral task
behavioral1
Sample
5f66345e8bc839e5c27b8fbed7a2c5a0_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
5f66345e8bc839e5c27b8fbed7a2c5a0_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
5f66345e8bc839e5c27b8fbed7a2c5a0_JaffaCakes118
-
Size
47KB
-
MD5
5f66345e8bc839e5c27b8fbed7a2c5a0
-
SHA1
c425f9b615392c01feea72129b4f81c66ed27a41
-
SHA256
d7a27c65bb74db67505bb503182f57b62f510f024efccb3610b330db8503da29
-
SHA512
483c7f72475677d72d87d105abf23a24eab6fc7903cc91337c65fd7ca9bb6dcccc786933e0162ab376c29b99abca7872da2b1c59b47b3a37b39d0ae31ed44eeb
-
SSDEEP
768:MbZNCABbHJlcVPo/z79sePLOIJxEyubZPynLQ:MbZN5tplcV0zRpbEyubde
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5f66345e8bc839e5c27b8fbed7a2c5a0_JaffaCakes118
Files
-
5f66345e8bc839e5c27b8fbed7a2c5a0_JaffaCakes118.exe windows:4 windows x86 arch:x86
14610dd0ebbc796a9a3a2ba2cdd24e79
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
user32
MessageBoxW
Sections
.text Size: 47KB - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE