Static task
static1
Behavioral task
behavioral1
Sample
656153a5f3470b28d2e6be3c21cfeeb7_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
656153a5f3470b28d2e6be3c21cfeeb7_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
656153a5f3470b28d2e6be3c21cfeeb7_JaffaCakes118
-
Size
749KB
-
MD5
656153a5f3470b28d2e6be3c21cfeeb7
-
SHA1
afeddbee219ffaa0bfa082788f1b163419ba6aed
-
SHA256
59a554d3f7d0ddc640c9958ab277ecfd9760c93b930fd0cfe97cc1318eda4fdf
-
SHA512
09911c255b7b8c3eedc12fea22ab0d5921e7bf12e6db9a38ea95f1ec562c32ab2e2bac2bd9f3e7487e125e370b0272bb21f45e302632f9014b2ff114795fc53b
-
SSDEEP
12288:qZZxLQR/hZ2ve9X3f0SaO2eGtTHaxcWpZe8iWzYfkyT1AauQmDh:qZbHve9fJaO2TOxJFzYMe1tQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 656153a5f3470b28d2e6be3c21cfeeb7_JaffaCakes118
Files
-
656153a5f3470b28d2e6be3c21cfeeb7_JaffaCakes118.exe windows:4 windows x86 arch:x86
00c6e017c5a624a3e9f9a0c81e3f24dc
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LockResource
LoadResource
SizeofResource
GetModuleHandleA
GetModuleFileNameA
CreateMutexA
OpenMutexA
FindResourceA
GetProcAddress
GetStartupInfoA
advapi32
GetUserNameA
msvcrt
_exit
_except_handler3
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_XcptFilter
Sections
.text Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 760B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 260B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 744KB - Virtual size: 743KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ