Static task
static1
Behavioral task
behavioral1
Sample
dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118
-
Size
18KB
-
MD5
dff40d24f81aea4e60ac0bb3b4a61cba
-
SHA1
dccc5acbf2df04e6336fa7245c653b7922f01f3a
-
SHA256
18e876a44fb1b58be6cff62e423480d6cf6f87fcd7ec4bdfed6e0ab06292f0d1
-
SHA512
c7f965ad5a8d191031d8e8d698b2166b026effd70084b30ead9b05a6cec4b514559e54d035bb6fa44ed34315915d4a49e433452815f68bb4994a467ae0563c56
-
SSDEEP
192:RoDEEy6C37xb/1Zu87WLcPxxyuadKgvyilp4Qk6dzavJSHQT0Zoa6ZpfuASOb6sk:CIbv1BYRlprGAHXAWsGfTsMt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118
Files
-
dff40d24f81aea4e60ac0bb3b4a61cba_JaffaCakes118.exe windows:4 windows x86 arch:x86
febf9939271ddf79e366e1ca2de25aee
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
user32
MessageBoxA
Sections
PELOCKnt Size: 512B - Virtual size: 496B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PELOCKnt Size: 512B - Virtual size: 288B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PELOCKnt Size: 512B - Virtual size: 116B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PELOCKnt Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE