Static task
static1
Behavioral task
behavioral1
Sample
93b29cc9df1066d6d4f8bad1157f4592_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
93b29cc9df1066d6d4f8bad1157f4592_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
93b29cc9df1066d6d4f8bad1157f4592_JaffaCakes118
-
Size
97KB
-
MD5
93b29cc9df1066d6d4f8bad1157f4592
-
SHA1
98bd8605747e2f193cc99057fdbf495cd0984fa1
-
SHA256
fcd3c7db5de41caa445d6de68a2cb94f4153e499a126bedd8662c6937878d50e
-
SHA512
2a83092143f320c71ae346d32d3cdbc3886ad7f7371f06768d89c524c9c68759b514072688a4495bc71cb8a2b5fc3eda1a0169329b49001b8888a1d764f06ff2
-
SSDEEP
3072:Sl5xJYGonXeu3bPfxvbHV/Juv6kGAvX23y:mZYGoXeurVESkGgd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 93b29cc9df1066d6d4f8bad1157f4592_JaffaCakes118
Files
-
93b29cc9df1066d6d4f8bad1157f4592_JaffaCakes118.exe windows:4 windows x86 arch:x86
ab50ce1607e4e2c8d3f0ac993454a8bc
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcmpiA
GetTempPathA
EnumDateFormatsExA
GetEnvironmentStringsA
GetCurrentDirectoryA
user32
DlgDirListA
EnumWindowStationsA
RemovePropA
GetClassLongA
GetDlgItemTextW
SendNotifyMessageA
SetWindowsHookA
EnumDesktopsW
IMPQueryIMEA
DefWindowProcW
gdi32
DeviceCapabilitiesExA
CreateFontIndirectExA
CopyMetaFileW
Sections
.tls Size: 28KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1024B - Virtual size: 850B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.icode Size: 1024B - Virtual size: 615B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ