Static task
static1
Behavioral task
behavioral1
Sample
a608e7df0a650a62d05e3782fbfde92a_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
a608e7df0a650a62d05e3782fbfde92a_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
a608e7df0a650a62d05e3782fbfde92a_JaffaCakes118
-
Size
76KB
-
MD5
a608e7df0a650a62d05e3782fbfde92a
-
SHA1
17be7c8d6a69be2cd3fff964b10bfe419e34c37b
-
SHA256
e667ac9a28adedd9217df23c427279f2aaa7434e2d0ab8d3dbc4b7d772b219d3
-
SHA512
5be5b42376e40758c8d58555bdcb575c5256e792b6a6de9af000ac8f9afec13361ddcc8902fb2a44ff54f9158cfe66cec54f870068c61c395968cfe7fccc1ace
-
SSDEEP
1536:FPPPPj3PRNSiyRa0YBQ4NvH+q0TTHZ67aLFnnyU8DmhIkOzpjVrs2ryrd1vUQuq6:5XSiwa0OvH+q0TzIa2lPHs2qo
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a608e7df0a650a62d05e3782fbfde92a_JaffaCakes118
Files
-
a608e7df0a650a62d05e3782fbfde92a_JaffaCakes118.exe windows:4 windows x86 arch:x86
e01bace0e4710d1f8fc9dd6911ba711e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetNumberOfConsoleFonts
GetCommProperties
GetProfileStringA
WaitForSingleObjectEx
GetVersion
GetFileInformationByHandle
GetTimeFormatW
TryEnterCriticalSection
BaseCheckAppcompatCache
SetTapeParameters
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.brdata Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE