Static task
static1
Behavioral task
behavioral1
Sample
0269d13247cdb5d2b4dfaacd421ae62d_JaffaCakes118.exe
Resource
win7-20240903-en
General
-
Target
0269d13247cdb5d2b4dfaacd421ae62d_JaffaCakes118
-
Size
185KB
-
MD5
0269d13247cdb5d2b4dfaacd421ae62d
-
SHA1
2b2abb7dcb0fdd7ac3f3496b8c280011880865c8
-
SHA256
cb693fc9e53a0a00557300a595f449288e0f0591ee7f44a00b8367e8d167d733
-
SHA512
afcda40ef39b457fb32140c84277357205bb88b08f041966b3d8b612676c142535803f986d1f35b211c9e804acaa87f9e0649249d961d3e1a682c7dadc4cc3bb
-
SSDEEP
3072:1z9yGPz8bEWn04thyvtOXDxMTGd2XY1SfLp4bpmjlydnPS1A14++oHqqTXPThDl:1zJ7fLAVMT62XkSebpmxqPSjZeXP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0269d13247cdb5d2b4dfaacd421ae62d_JaffaCakes118
Files
-
0269d13247cdb5d2b4dfaacd421ae62d_JaffaCakes118.exe windows:4 windows x86 arch:x86
157a6e0f3106df7ccdde7acfc4b277de
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
MultiByteToWideChar
GlobalGetAtomNameA
VirtualAlloc
SetStdHandle
WriteConsoleA
TlsAlloc
IsValidCodePage
RtlUnwind
GetCPInfo
GetTimeFormatA
SetFilePointer
EnumResourceNamesA
HeapSize
HeapReAlloc
TlsGetValue
GetModuleHandleW
GetConsoleOutputCP
TlsSetValue
GetLocaleInfoA
GetOEMCP
GetDateFormatA
GetACP
RaiseException
occache
FindControlClose
shell32
SHGetFolderLocation
DragAcceptFiles
ShellExecuteW
SHGetMalloc
ShellExecuteExW
SHAppBarMessage
SHGetFileInfoW
SHBrowseForFolderW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
Shell_NotifyIconW
Sections
.text Size: 83KB - Virtual size: 227KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 98KB - Virtual size: 98KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ