Static task
static1
Behavioral task
behavioral1
Sample
847b9fefd72ad076e9a4d5059bfb347b_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
847b9fefd72ad076e9a4d5059bfb347b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
847b9fefd72ad076e9a4d5059bfb347b_JaffaCakes118
-
Size
309KB
-
MD5
847b9fefd72ad076e9a4d5059bfb347b
-
SHA1
a57555f3475865c139b6830293600f3acefc6f5d
-
SHA256
4181b0054e9af0249bcf1136d6699b36a90b757c5654839a1e2274e13de7c8ec
-
SHA512
d201259e549e801bf82d79b35c2253f72389f96d73e9e4ec2ae5a709bbbf606fd6445ed7226eac23989670469d0592315984276e447ecd6f0a56d7ff19512eb5
-
SSDEEP
6144:F8mWEZXuzii3Hy0Q+KVi1tZBpwR1XCblAqpGCOQ+7vWlRdI:F8cXeii3Hy0QLgd2CiSGCd+7vWlRO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 847b9fefd72ad076e9a4d5059bfb347b_JaffaCakes118
Files
-
847b9fefd72ad076e9a4d5059bfb347b_JaffaCakes118.exe windows:4 windows x86 arch:x86
820ab24e53af2dbafc74d24f87e40262
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
MessageBoxA
comctl32
InitCommonControls
kernel32
LoadLibraryA
GetProcAddress
Sections
Wolf_57 Size: 9KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Wolf_57 Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Wolf_57 Size: 1024B - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 270KB - Virtual size: 768KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Wolf_57 Size: 26KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE