Static task
static1
Behavioral task
behavioral1
Sample
66c88d79145547ae18679bdd9e2a889a_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
66c88d79145547ae18679bdd9e2a889a_JaffaCakes118
-
Size
748KB
-
MD5
66c88d79145547ae18679bdd9e2a889a
-
SHA1
5f131002f38e6aaf101c69290a15f9849157b467
-
SHA256
4c1ae3959e90dbf7bb560f0a6464693fc2241c3febb86b118161904e12385db0
-
SHA512
8b763bd7ec9fbd17d1f68cb4e56a551c0e0d116fe13a1d6e562e414b9918cdaff6a211479ee8890b6c983c4963188c8750cdd43ea03315a111cf6ffc3f2833ae
-
SSDEEP
12288:/Dnwsm3P9SJoy+sYI70Nh1ElOluIDVavkN58VHw/AvIuHDhy8T7BDtt0JF3eq:7wsslSSy4u0NhimuIDVjL8O/NuHDhz7s
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 66c88d79145547ae18679bdd9e2a889a_JaffaCakes118
Files
-
66c88d79145547ae18679bdd9e2a889a_JaffaCakes118.exe windows:4 windows x86 arch:x86
f21542efc22a76d3dc80f89f17b24fb2
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
ord516
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord607
ord608
ord717
ProcCallEngine
ord644
ord573
ord685
ord100
ord616
ord617
Sections
.text Size: 16KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 728KB - Virtual size: 724KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ