Static task
static1
Behavioral task
behavioral1
Sample
67cca7d621cc066449bbda1101273ac7_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
67cca7d621cc066449bbda1101273ac7_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
67cca7d621cc066449bbda1101273ac7_JaffaCakes118
-
Size
76KB
-
MD5
67cca7d621cc066449bbda1101273ac7
-
SHA1
7634a9d11698c8a25b091634a8dc4d218835664c
-
SHA256
014e1dca9339def90f3bad721f13828254e68664dc5d13e2f5ebc14ad8d0f1ae
-
SHA512
07f965a54f7a8f010a77d04c3e7e3ee19584a7581f23c58e52adaa29f5dea4915a871b89d0d21573b1eaece9f584d9377e1c4ab0a4ee50249b79d609e2de9172
-
SSDEEP
768:owMTnIyo6N8mCgHGE8MRZIFJiQzzepg1RgtnupONEPPzTCD0g9dr4uE4fazlK3vq:owYRxBRoTzzhjgnSOmfCYg9vOKv/S
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 67cca7d621cc066449bbda1101273ac7_JaffaCakes118
Files
-
67cca7d621cc066449bbda1101273ac7_JaffaCakes118.exe windows:4 windows x86 arch:x86
7bcb4be8a284e4ec65e8f7af4ff9f3bc
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
msvbvm60
ord696
Sections
.MPRESS1 Size: 67KB - Virtual size: 392KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE