Static task
static1
Behavioral task
behavioral1
Sample
61a92421bf37bd93f21d46a7a238a5d1_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
61a92421bf37bd93f21d46a7a238a5d1_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
61a92421bf37bd93f21d46a7a238a5d1_JaffaCakes118
-
Size
29KB
-
MD5
61a92421bf37bd93f21d46a7a238a5d1
-
SHA1
3591051d4baf7463e412e588167eb6db3d86b523
-
SHA256
ccdf0737654fe74c713bcb950a4a0fa1b121c9e53df8d22503c7e91b142a39eb
-
SHA512
a189ab226d51cd82b5cbc92ff312c64dc5f65434165113e9d0b43f8c7e42edc4e545ce3f290c4a156709e88c106431cc4e33e96b3e9ee4add46a9e3fc6223e69
-
SSDEEP
768:QeLMhlzjRKiQWgdgmWhtaHxNZbR3Xe9lZ3F+a:FAzjRpngfsaHv3eJf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 61a92421bf37bd93f21d46a7a238a5d1_JaffaCakes118
Files
-
61a92421bf37bd93f21d46a7a238a5d1_JaffaCakes118.exe windows:4 windows x86 arch:x86
c6bb0de3943eb1bd41df2be358de09c0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetProcAddress
GetModuleHandleA
GetTickCount
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
GetProcessHeap
Sections
.text Size: 1.0MB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 927B - Virtual size: 928B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ