Static task
static1
Behavioral task
behavioral1
Sample
a002c5563ac1262d6d7ee1585242688a_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
a002c5563ac1262d6d7ee1585242688a_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
a002c5563ac1262d6d7ee1585242688a_JaffaCakes118
-
Size
83KB
-
MD5
a002c5563ac1262d6d7ee1585242688a
-
SHA1
6042e0776d8428ee422e4179e97f69289c92fd47
-
SHA256
e48668e4d47aa11a66e884794d323ce69cbc87567a7db923a1d9359d72b931b2
-
SHA512
1be1370bcb3513950b1b35a22037d2d19408c943aca5c4acf6447715216fc9f7d65e64d3867a1704d506a835a7c4391565c73ccbf2fd82c8326ee7ad76ac0574
-
SSDEEP
1536:eV0LXsLgkNgPtc1nsVRThGLcgBsf7H0UepjVrs2ryrd1vUQuqwcizSkX:eVYX2gkioWhGCf76Hs2quciu
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a002c5563ac1262d6d7ee1585242688a_JaffaCakes118
Files
-
a002c5563ac1262d6d7ee1585242688a_JaffaCakes118.exe windows:4 windows x86 arch:x86
6d18a60027785313bf3cedf7e53a848b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetClientTimeZoneInformation
SetUserGeoID
SetLocalPrimaryComputerNameW
lstrcmpW
PrepareTape
FileTimeToDosDateTime
GetShortPathNameA
GlobalUnWire
ReadConsoleInputExA
EnumSystemLocalesA
GetPrivateProfileSectionNamesA
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.brdata Size: 27KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE