Static task
static1
Behavioral task
behavioral1
Sample
afa162b37c97d27ee27920f9a0832ee5_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
afa162b37c97d27ee27920f9a0832ee5_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
afa162b37c97d27ee27920f9a0832ee5_JaffaCakes118
-
Size
91KB
-
MD5
afa162b37c97d27ee27920f9a0832ee5
-
SHA1
ee3cc34f1ab9cf17b07c0f8fd55cd93200b0b4c1
-
SHA256
e61fbdf82e3877aa04ff78994fb5e2f2848806db42e71c48de0139f3d1a636fe
-
SHA512
2cdcfe7930877c3fd3eb313302d76d43406905d51f8649b3248d69f74539a2cc908cdf146d7525727e17c2878c1629ff301a98324edbecddc063a775284d3503
-
SSDEEP
1536:biuGZnrRcuX0QomM4cRRGe855ttUEo1ZFiOCbUPhxd2vNzSOca+3VtmQj8LdPAMT:WuaX05kee7o1ZFizwhLeSTZbYJPR73rl
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource afa162b37c97d27ee27920f9a0832ee5_JaffaCakes118
Files
-
afa162b37c97d27ee27920f9a0832ee5_JaffaCakes118.exe windows:4 windows x86 arch:x86
e215d701280b629e2d8738ddcffb364a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
DrawStateA
DrawMenuBar
DrawIcon
DestroyIcon
DestroyCursor
DestroyCaret
DeleteMenu
DefDlgProcA
CreateMenu
CreateIconFromResourceEx
CreateIconFromResource
CreateDialogIndirectParamA
CreateDesktopW
CopyRect
CharUpperA
kernel32
CloseHandle
lstrcpyA
lstrcatA
TlsGetValue
TlsFree
TlsAlloc
SetCurrentDirectoryA
RtlUnwind
InitializeCriticalSection
GetStartupInfoA
GetLastError
GetDateFormatA
FlushFileBuffers
FindResourceA
EnumResourceNamesA
EnterCriticalSection
Sections
.text Size: 34KB - Virtual size: 34KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE