Static task
static1
Behavioral task
behavioral1
Sample
0d740872e601430e181bf3710cfc1d38_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
0d740872e601430e181bf3710cfc1d38_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
0d740872e601430e181bf3710cfc1d38_JaffaCakes118
-
Size
79KB
-
MD5
0d740872e601430e181bf3710cfc1d38
-
SHA1
c6a05dfc36700d727635cf283f1a3584a328e261
-
SHA256
f5dd44bd6d41e92a1c5e63842a2165c79d3342d3eea1e623afe8abb2dff1140d
-
SHA512
24eb8e0f6dba3899407a61d1fa885128c6b7d696e52afc424dace92aec13f8fd5c5ad466da159954a01cbf9bd9048653ce6f39581731a569f9cfaf9d9d222d70
-
SSDEEP
1536:TBZXgwGPdNPRPvHp8ig0gp1VbAuJdVPuzEI6gtcD0OY:lZnEbR8R9zVb9Z+FA0x
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0d740872e601430e181bf3710cfc1d38_JaffaCakes118
Files
-
0d740872e601430e181bf3710cfc1d38_JaffaCakes118.exe windows:5 windows x86 arch:x86
e0efd0a344bc1c0daf3197493c46b256
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ntdll
swprintf
memset
kernel32
GetTickCount
VirtualProtect
user32
LoadStringW
EndDialog
SetWindowLongW
GetDlgItem
GetDlgCtrlID
SetDlgItemInt
MessageBoxW
DialogBoxParamW
FillRect
PostQuitMessage
SetTimer
GetDlgItemInt
SetDlgItemTextW
GetClientRect
SendMessageW
GetWindowLongW
gdi32
CreateFontIndirectW
DeleteObject
GetStockObject
CreateSolidBrush
SetBkColor
Sections
.text Size: 76KB - Virtual size: 75KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 780B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 40B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 856B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ