_V_gNWqfrC@4
Static task
static1
Behavioral task
behavioral1
Sample
6756324be7c20af356769e64696628e9_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
6756324be7c20af356769e64696628e9_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
6756324be7c20af356769e64696628e9_JaffaCakes118
-
Size
129KB
-
MD5
6756324be7c20af356769e64696628e9
-
SHA1
d74b712c839be311956b6b39c5609d913a46bd1a
-
SHA256
715a918d1bffd50cb1958e90dc88c7b27b9245edf319ecbdffa9487f9f818326
-
SHA512
09f883de7a32fd87d14ba2250e7477b240a3d29caedef37928ae31c18ed6365d93bf7b5e53e31514b7ab8d84d5a51ac600be2507baebd486a52a89c722832eb7
-
SSDEEP
3072:WfMZ1LyU8ZEbX7/8CHDd5OuGlyaqTHbMDPX7QcwRMf5:WfM/LyU8On/8BlO7yb46
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6756324be7c20af356769e64696628e9_JaffaCakes118
Files
-
6756324be7c20af356769e64696628e9_JaffaCakes118.exe windows:4 windows x86 arch:x86
6f5d1909992956a3ed8ed2a240fda10d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
GetTextAlign
SelectObject
SelectPalette
advapi32
RegEnumValueA
RegQueryInfoKeyA
kernel32
lstrlenA
LoadLibraryA
GetOEMCP
VirtualAllocEx
ExitProcess
GetLocalTime
GetLocaleInfoA
GetLastError
GetFileType
GetFullPathNameA
user32
IsDlgButtonChecked
GetClassInfoA
GetMenu
GetCapture
GetClassNameA
CreatePopupMenu
Exports
Exports
Sections
.text Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 125KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 112KB - Virtual size: 112KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ