Static task
static1
Behavioral task
behavioral1
Sample
b72cfecdb8f298ab1d5891459ba3c178_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
b72cfecdb8f298ab1d5891459ba3c178_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b72cfecdb8f298ab1d5891459ba3c178_JaffaCakes118
-
Size
24KB
-
MD5
b72cfecdb8f298ab1d5891459ba3c178
-
SHA1
7a73e9a651e850e86959736c030d5d58cf85ed1b
-
SHA256
7411537f33aee4393d4bbadcb1cb69df43a97e5a624105a6bf7e6e1fdf565f39
-
SHA512
790a4ac2cfdd97b44edf0f51ca76e05b774e3c21da1b485e48e7a38a30e647531a586131e40c9bee7d98569c3aba1eff2d5076190c5cc3951c50d5317ff91ac7
-
SSDEEP
48:fBhZYBGdCB9JM0UuXxJzN2FUL5Aw64Vkx0iL/k7As1gfSd:LZYRAmJxz904V5iAUs1gk
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b72cfecdb8f298ab1d5891459ba3c178_JaffaCakes118
Files
-
b72cfecdb8f298ab1d5891459ba3c178_JaffaCakes118.exe windows:4 windows x86 arch:x86
14610dd0ebbc796a9a3a2ba2cdd24e79
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
user32
MessageBoxW
Sections
.text Size: 512B - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE