Static task
static1
Behavioral task
behavioral1
Sample
65947ae6047402e8a6df53714ad8eed5_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
65947ae6047402e8a6df53714ad8eed5_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
65947ae6047402e8a6df53714ad8eed5_JaffaCakes118
-
Size
54KB
-
MD5
65947ae6047402e8a6df53714ad8eed5
-
SHA1
de70a39a404db346e456b3ac568f204ac1cec6e4
-
SHA256
f846dc3864d979bf8e0cbdb8e51168e6c942f540d6be4f326096643e1a40018b
-
SHA512
8b0c68c77626e0143f738f156fd1ea5c75ecb8e5ab5e468eb3defad1bf0f84769256ea04d40c8b1249bc6584ee2205eaadaf9f182b62343526404cb805591fca
-
SSDEEP
768:UevFI4m0on6HGavZUdQffoaFNnioNQpMGrWRY8vDckrR0gz9KjqjOYxwA3eyLt41:98V6HGavhga4WY4cklCOj3SYLt4pSXW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 65947ae6047402e8a6df53714ad8eed5_JaffaCakes118
Files
-
65947ae6047402e8a6df53714ad8eed5_JaffaCakes118.exe windows:4 windows x86 arch:x86
c6bb0de3943eb1bd41df2be358de09c0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetProcAddress
GetModuleHandleA
GetTickCount
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
GetProcessHeap
Sections
. Size: 155KB - Virtual size: 27KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
. Size: - Virtual size: 928B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ