Static task
static1
Behavioral task
behavioral1
Sample
bf96f9e76b815aa351da96181fe77f14_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
bf96f9e76b815aa351da96181fe77f14_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
bf96f9e76b815aa351da96181fe77f14_JaffaCakes118
-
Size
4KB
-
MD5
bf96f9e76b815aa351da96181fe77f14
-
SHA1
b9baf8087f4d6e97f8a041bffb8afe3a54c57712
-
SHA256
90ac6ed49a12084f5202aa257aa0d02f479df51af677ba51d5f55ba7ec58b528
-
SHA512
a785495e95c744591b1113bfdfb0edbe785ff7d24946c59c8ae32a89f84ceeb3bffa86cb3c5caf75ec29e4f80b9776ea8fefc92609fb54ace812fbe3ded14b1c
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bf96f9e76b815aa351da96181fe77f14_JaffaCakes118
Files
-
bf96f9e76b815aa351da96181fe77f14_JaffaCakes118.exe windows:1 windows x86 arch:x86
9d92390490daea854d416f2c07a09044
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualAlloc
user32
DefWindowProcA
DialogBoxParamA
DispatchMessageA
GetClientRect
GetMessageA
LoadCursorA
LoadIconA
LoadMenuA
MessageBoxA
PostQuitMessage
SendMessageA
SetFocus
TranslateMessage
Sections
.flat Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.api Size: 1024B - Virtual size: 516B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE