Static task
static1
Behavioral task
behavioral1
Sample
87cb138363cd9d7499a8589a468beeca_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
87cb138363cd9d7499a8589a468beeca_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
87cb138363cd9d7499a8589a468beeca_JaffaCakes118
-
Size
30KB
-
MD5
87cb138363cd9d7499a8589a468beeca
-
SHA1
49f1a3396bdffb527a5f34d38f4d414ff1d95519
-
SHA256
71927e5f93fdeeb23ce915b3df90fba06c71bff5570d87ac384c23467a562694
-
SHA512
74fb3ba11eb6022c322cb3b81123cf285f9dddde4b095b3b4f5dbe6905826cb6b6616c5b680343a75949ff9d421d457f91d0e6c1f5801856292572f0d06a4d81
-
SSDEEP
384:Vugmj8LrUcDOahE4Twm/UNyxwAD4O7ABCwRHI/MjRbuFB+kXgD7WYg+Xra/oQ+0l:kEUP04y7NIo0j6Q3CtgQB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 87cb138363cd9d7499a8589a468beeca_JaffaCakes118
Files
-
87cb138363cd9d7499a8589a468beeca_JaffaCakes118.exe windows:4 windows x86 arch:x86
eb7a4932d1b3c4321b977aac3ceb86b4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitThread
CreateThread
FatalExit
ExitProcess
CreateThread
user32
GetMenuState
CharToOemW
GetClassWord
DestroyCursor
CreateIconIndirect
FindWindowW
GetUpdateRgn
shell32
DriveType
FreeIconList
OpenAs_RunDLL
SHFindFiles
SHFree
SHUnlockShared
PathResolve
SheConvertPathW
Sections
.text Size: 14KB - Virtual size: 22KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 2KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE