Static task
static1
Behavioral task
behavioral1
Sample
dc495abdf7e68e1ecb941135d5fd1ba3_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
dc495abdf7e68e1ecb941135d5fd1ba3_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
dc495abdf7e68e1ecb941135d5fd1ba3_JaffaCakes118
-
Size
18KB
-
MD5
dc495abdf7e68e1ecb941135d5fd1ba3
-
SHA1
f201e756d2f864c1a698e85544fdae0a1ed94b69
-
SHA256
d0f918c8beccea245bcd4c1fdf6ba33d4edbbbafee6667bf5840f54f0a8e47e9
-
SHA512
25536c4cb167efab6e690c3b6f0305dad5d6584462636b8bf9a03c06e806baae6171227211e7b53aabbfb5ca7b79aac46ed1c8e49626d8993dce8d60539dc47b
-
SSDEEP
192:UI+IPkw7AVsQS4Z8cco6f59x8REyoHqoMDOR5RqwgqE4Sa3:UItPNWsQ3PRaCLLeqwgH4d3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dc495abdf7e68e1ecb941135d5fd1ba3_JaffaCakes118
Files
-
dc495abdf7e68e1ecb941135d5fd1ba3_JaffaCakes118.exe windows:4 windows x86 arch:x86
69eaf1a7b3d0b4e3001ca739665acb6f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
ord588
MethCallEngine
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord100
Sections
.SC0 Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.SC1 Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.SC2 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ