Static task
static1
Behavioral task
behavioral1
Sample
b5cec5053b91c95b7386f10487c1019c_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b5cec5053b91c95b7386f10487c1019c_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b5cec5053b91c95b7386f10487c1019c_JaffaCakes118
-
Size
1.3MB
-
MD5
b5cec5053b91c95b7386f10487c1019c
-
SHA1
0af756448fab57912e99598ca814948d34ad7094
-
SHA256
d08df0cd8d7bf767fd289a1a942168ff5e4c1b88b11ff79dd608fc2dee2c5ba5
-
SHA512
7986e03d068074b324b81fa0c7116856129c3eb8d4b86c207516c25e55ac941564554cf22397a2b20c593d4e7ad178a69300d0cd4f324fb6a21d998ee079a7ff
-
SSDEEP
24576:CNfbrnh3wKPa1diQiEJkBfYMRBG6U/itEmmI+CsTDef9J:MnlwKPa1EBfltPmIfy09J
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b5cec5053b91c95b7386f10487c1019c_JaffaCakes118
Files
-
b5cec5053b91c95b7386f10487c1019c_JaffaCakes118.exe windows:4 windows x86 arch:x86
d5f2d8849813a4009dd8b330de1b3bde
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
user32
DefWindowProcA
oleaut32
VariantChangeTypeEx
Sections
Size: 1.1MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 193KB - Virtual size: 196KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE