Static task
static1
Behavioral task
behavioral1
Sample
dc9b20be08ed39d8a77111a1987eb6ef_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
dc9b20be08ed39d8a77111a1987eb6ef_JaffaCakes118
-
Size
4.2MB
-
MD5
dc9b20be08ed39d8a77111a1987eb6ef
-
SHA1
afa310dd7cb7f479ee1e5de78f98d9005e03998e
-
SHA256
73501399f8bbdba1ac9b42d35a22b38da862426f983160bd0a45df4cc5a0a172
-
SHA512
e0f4b3e9db04b30217bd62b2052d10f10b3fbb1876ac003be6c7eee59c9c68bc6c80fbb7b6b6f384eedc2b0b84099f0fab051b525af408e491678a655f1c52e2
-
SSDEEP
98304:ZWmur+bfxCyGRIAqAnzwGckNb4gcROaxOJB19x1pmIlTUHdwN:gmIufgdqscyMTOaYJB3fpTlGwN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dc9b20be08ed39d8a77111a1987eb6ef_JaffaCakes118
Files
-
dc9b20be08ed39d8a77111a1987eb6ef_JaffaCakes118.exe windows:4 windows x86 arch:x86
54656479cd00795008afa08192b0ea07
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32 user32
GetCurrentThreadId
user32
MessageBoxA
Sections
SE Size: 372KB - Virtual size: 372KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SE Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SE Size: 3.9MB - Virtual size: 3.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
SE Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ