Mrgbkgyl
BeginKldyhgryg
AddErycyetsly
Static task
static1
Behavioral task
behavioral1
Sample
f5aa8f7c359f09d95682c8cdf6cc2cce_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f5aa8f7c359f09d95682c8cdf6cc2cce_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
f5aa8f7c359f09d95682c8cdf6cc2cce_JaffaCakes118
Size
75KB
MD5
f5aa8f7c359f09d95682c8cdf6cc2cce
SHA1
b0506794ff561181f97abbb6794dc81e0132480a
SHA256
ffd2386080b0b71ac7199f2bcea416ceb04e40497d51addc636ea5814f971a32
SHA512
7b8185b50b7bb78b3c78363b410c6c96504cdcf5b65ca37d90d507f4e5e175bd8391347de1bdc7bfc451f22404d6a0094ad572804e7951498a6f49b0651c3d0a
SSDEEP
1536:d7k8Wp8growMQZQWEU0mzOkkMUyLp4+royhwEUeJXAer26VUnB5ni:7mJ8N6QvU0Qz/qJeJXAb6VUi
Checks for missing Authenticode signature.
resource |
---|
f5aa8f7c359f09d95682c8cdf6cc2cce_JaffaCakes118 |
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GetCommandLineA
ReadFile
WriteConsoleOutputCharacterW
VirtualProtect
GetModuleHandleA
GetStartupInfoA
GetModuleFileNameA
UpdateWindow
GetTopWindow
Mrgbkgyl
BeginKldyhgryg
AddErycyetsly
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ