Static task
static1
Behavioral task
behavioral1
Sample
d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118
-
Size
7KB
-
MD5
d24069f365f21c6b1147c816ffe34c2a
-
SHA1
a5296101631be4b311a7c81fbd2a4b4e7d826ca4
-
SHA256
d9eb17bd9c9879a508422f6d704bd2bbe14890732d6a53dbd953d1e127cdc099
-
SHA512
4608fcd30ca9d3211457dbd3bf28d4d5db11a7dceaed8d76b8431c04008e5f68170b3d030ec9162cfd518c88ec99b8d88b30ddef403243ef334386d63dc6e72d
-
SSDEEP
192:UaBxQuMCWpYk4lrx79OtDdO2Pvf8ufHp:B/MCWpYkKVwtBO2PHHf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118
Files
-
d24069f365f21c6b1147c816ffe34c2a_JaffaCakes118.exe windows:4 windows x86 arch:x86
fdc123cee95303b1c720bddd4f226317
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
lstrlenA
SleepEx
GetTickCount
VirtualFree
GetCommandLineA
Sleep
GetStartupInfoA
VirtualAlloc
QueueUserAPC
IsDebuggerPresent
GetVersionExA
CloseHandle
GetCurrentProcessId
CreateThread
lstrcpyA
Sections
.text Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1024B - Virtual size: 818B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 512B - Virtual size: 4B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE