Static task
static1
Behavioral task
behavioral1
Sample
c014ad627dfd1d39bfa3f478939b2fc0_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
c014ad627dfd1d39bfa3f478939b2fc0_JaffaCakes118
-
Size
624KB
-
MD5
c014ad627dfd1d39bfa3f478939b2fc0
-
SHA1
6c2ec6a642410deb6446825e1036dcc778f2d148
-
SHA256
15ec0fdad384b506e64c814bc519715e82b2ae5c64cb0b496a47576efc5e0a72
-
SHA512
eb8e1e0c5ae62f9d7ff97f1089d1fe7dfa364d588a0aef08e36817e668b240a13389a19ad7e0d46a9cc5cfed86136261a90c5c99fc196f38d380f062e8fdb38b
-
SSDEEP
12288:RJtt7Cw9R3A7tI36gzlPrNi4R/TjxN2Y28IvMlBWM/Krtj:RrP9R3A5IZxrRR/JUJviWM/Utj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c014ad627dfd1d39bfa3f478939b2fc0_JaffaCakes118
Files
-
c014ad627dfd1d39bfa3f478939b2fc0_JaffaCakes118.exe windows:4 windows x86 arch:x86
2eabe9054cad5152567f0699947a2c5b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrcpy
Sections
Size: 8KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 4KB - Virtual size: 760KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
tgfwztsq Size: 596KB - Virtual size: 596KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
oeaavouk Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE