Static task
static1
Behavioral task
behavioral1
Sample
b518ebf7445b753d2ecaecab0197a943_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b518ebf7445b753d2ecaecab0197a943_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b518ebf7445b753d2ecaecab0197a943_JaffaCakes118
-
Size
44KB
-
MD5
b518ebf7445b753d2ecaecab0197a943
-
SHA1
2f52ab1475a77910889668b95944ab687a683165
-
SHA256
da0caee01a6d39dcd41b78c75e443cb1a8c97b400c1439c36c5d2206ad2db729
-
SHA512
b67083fafcc32d6ed8518ec829d084b18c2338eb643eb51cb11903431bd3a184edb4d8f7968c21b6027fac79c46e42f6a9f6ada82a8cdb974eb2c01543af0772
-
SSDEEP
768:fX9YrbGIUS1ZBb8EPRgqz4lYan+MjLWFO8x1/lT2EzL7QcL8NpwQL3K:fX9YrbG018EPRgq0lDnPQxJi+QL3K
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b518ebf7445b753d2ecaecab0197a943_JaffaCakes118
Files
-
b518ebf7445b753d2ecaecab0197a943_JaffaCakes118.exe windows:4 windows x86 arch:x86
6f2806644ca68f86caf076a0562b57bf
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FreeResource
GetCommandLineA
GetSystemTime
TlsGetValue
VirtualAlloc
lstrcpyA
msvcrt
malloc
wcscmp
wcscpy
wcslen
isdigit
Sections
.text Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 25KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ