Static task
static1
Behavioral task
behavioral1
Sample
620f3134d0016992aff1ba51ec1fb77c_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
620f3134d0016992aff1ba51ec1fb77c_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
620f3134d0016992aff1ba51ec1fb77c_JaffaCakes118
-
Size
62KB
-
MD5
620f3134d0016992aff1ba51ec1fb77c
-
SHA1
307a464e1a4cf60aa254d0a3b0b0830da3b0e5e3
-
SHA256
ac5b3bcedc8ae2f340d3fd83181b1f5feb5811a91a1107fffb42ae61c69acb4b
-
SHA512
38549ae73816f9b89219355aae02dfa5c597a992d748f978f97957b2c9805a4f949a28753c99df5ac8a6a2593af406aacff06c27d1936a6dffb39c3478b694cf
-
SSDEEP
1536:9/W4iXzSvRjlLDeJBeIP3wXoIX8eB60jYG0KeMuJIHzbc/k11:9/WNXojsJcI6X8Yl9EQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 620f3134d0016992aff1ba51ec1fb77c_JaffaCakes118
Files
-
620f3134d0016992aff1ba51ec1fb77c_JaffaCakes118.exe windows:4 windows x86 arch:x86
7b7ffddc5e22082e4db13acf7a78fd41
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetComputerNameW
WriteConsoleA
SetConsoleDisplayMode
GetDefaultCommConfigA
RegisterConsoleOS2
SetInformationJobObject
ExpungeConsoleCommandHistoryW
OpenFileMappingA
FileTimeToLocalFileTime
LockFile
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 47KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE