Static task
static1
Behavioral task
behavioral1
Sample
cdd6c9ffd00c8b6111d77c90d25fcecd_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
cdd6c9ffd00c8b6111d77c90d25fcecd_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
cdd6c9ffd00c8b6111d77c90d25fcecd_JaffaCakes118
-
Size
32KB
-
MD5
cdd6c9ffd00c8b6111d77c90d25fcecd
-
SHA1
a21ac2dfd6d1bcb034023e34e82cb5184d60b9f1
-
SHA256
981b9e5f41c4aefbd65a15c4f5ac8bc71bd47360c1fa233d6ee6e72436538279
-
SHA512
92f1f88fdc3340509b7313b5d9c53bdfac07ad131c9c79ab757893a703d9b401401d189593dbf15e7be9a043d9ed6c59989a0c6b8daece821b449eb137ef93e3
-
SSDEEP
384:8KJXJy2t+Vx2i3slSD3OZG9CkfeObBbv4oV:ZJAgU8nG9ndbv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cdd6c9ffd00c8b6111d77c90d25fcecd_JaffaCakes118
Files
-
cdd6c9ffd00c8b6111d77c90d25fcecd_JaffaCakes118.exe windows:4 windows x86 arch:x86
14610dd0ebbc796a9a3a2ba2cdd24e79
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
user32
MessageBoxW
Sections
.text Size: 512B - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE