Static task
static1
Behavioral task
behavioral1
Sample
a7e720c142cf1bc63541608f6c5c6f7d_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
a7e720c142cf1bc63541608f6c5c6f7d_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
a7e720c142cf1bc63541608f6c5c6f7d_JaffaCakes118
-
Size
71KB
-
MD5
a7e720c142cf1bc63541608f6c5c6f7d
-
SHA1
d512b2cf14eca8b911444b5bf784f7be6c3a3ff5
-
SHA256
132766951c5d46a64ff16c1d1ee89005f4b8c5635906defa41d2dd1f78d65bf5
-
SHA512
ce898930e4547c24a7af2ccb2513f3e4d7b78d54746e5915964c68a1e6d680d8b03126f9352b222894cc848d487317af0018b20e6f2c7143ef15f6713045d341
-
SSDEEP
1536:JiJm5ponB0DZoiUAvoT6DvDwIf1zwQVgv/Y:UJ2poSDZoi3v2G1zwLv/
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a7e720c142cf1bc63541608f6c5c6f7d_JaffaCakes118
Files
-
a7e720c142cf1bc63541608f6c5c6f7d_JaffaCakes118.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 27KB - Virtual size: 156KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 44KB - Virtual size: 188KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE