Static task
static1
Behavioral task
behavioral1
Sample
862caa1e85272e95ca9c19b46516cde5_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
862caa1e85272e95ca9c19b46516cde5_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
862caa1e85272e95ca9c19b46516cde5_JaffaCakes118
-
Size
342KB
-
MD5
862caa1e85272e95ca9c19b46516cde5
-
SHA1
c60f3a2e9befdad5c6fe75c10394da3ea3af169c
-
SHA256
76e765b63f41b88331609d1189f7a5a3cdc12626b14448f71b35ad42348b378c
-
SHA512
ab73f2f99de9e7e8b86d40989c0b36654e99233aa8001ba7f9a2e4d6628cd4ff142fb154393b40ec71bffe607a16b68c5ba12b5ce4102d07ba2f10b9282355e9
-
SSDEEP
6144:x0/70WPJq6Glx1GBMrjM4XyOtyFpKxkpphvVlinM3KeLAR/hAVCMpQO4Pu8k:mRYx1GBqY4ltyFZpDv3weLKK14c
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 862caa1e85272e95ca9c19b46516cde5_JaffaCakes118
Files
-
862caa1e85272e95ca9c19b46516cde5_JaffaCakes118.exe windows:4 windows x86 arch:x86
52bcca0293a2e7268dc0bc2b29d8148f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
user32
MessageBoxA
comctl32
InitCommonControls
Sections
Size: - Virtual size: 432KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 52KB - Virtual size: 84KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 48KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE