Static task
static1
Behavioral task
behavioral1
Sample
139c253b07cefe726b69fda2db70018d_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
139c253b07cefe726b69fda2db70018d_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
139c253b07cefe726b69fda2db70018d_JaffaCakes118
-
Size
286KB
-
MD5
139c253b07cefe726b69fda2db70018d
-
SHA1
5b8a7a31c51637df8556a7a0b1121ff3895435cb
-
SHA256
97b7b94b28935ac6d8e9f8ddee9609a5d9d07e4ef316b1aab37a383dd62012e6
-
SHA512
72918225cc130829f6e37ee7de7127ac701bd1b070b0f8d6b587a7e57a494808f3d3bbcf3072486847157677aedb1b9e3909dd1c569094c2d65a37165dec31d2
-
SSDEEP
6144:r71Lc+fvbXjvMPWy5Y/qWIsbNenSglKDnmmU29+IOc:r7PfrjvYYqWI+enDlKDn3U2o9c
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 139c253b07cefe726b69fda2db70018d_JaffaCakes118
Files
-
139c253b07cefe726b69fda2db70018d_JaffaCakes118.exe windows:5 windows x86 arch:x86
9cce40eee4d49e8d799bcf12193d8fd2
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetInputState
EndDialog
ValidateRect
OemToCharBuffW
GetActiveWindow
VkKeyScanA
SetWindowPos
GetOpenClipboardWindow
SetWindowTextA
DialogBoxParamA
ole32
CreateDataAdviseHolder
WriteClassStg
kernel32
AreFileApisANSI
GetCPInfoExA
GetCurrentActCtx
LocalAlloc
HeapDestroy
HeapCreate
LocalFree
GetModuleHandleW
GetProcAddress
GetNativeSystemInfo
GetProcessWorkingSetSize
HeapFree
Sections
.text Size: 265KB - Virtual size: 264KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 4B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ