Static task
static1
Behavioral task
behavioral1
Sample
2ba3cc42cf104533443a8d882aa988ca_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2ba3cc42cf104533443a8d882aa988ca_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
2ba3cc42cf104533443a8d882aa988ca_JaffaCakes118
-
Size
675KB
-
MD5
2ba3cc42cf104533443a8d882aa988ca
-
SHA1
26c9d0beadb57b2e99e1d1034d9a448c34a6eb22
-
SHA256
730a84127584fcf9185469d86fe8155194613afcf87b62198937851cb1ab4f11
-
SHA512
92c12529219834edb6f7fa9bf51bad44597f336f32aed947d8bba5d38533b326a130eac6c0c3f37b73612f61a8218520b9f2984e4c2616fa06c0e95a199fa3cd
-
SSDEEP
12288:qoe+LwXPPvvLUcxqYoAKnKQAzdmTfaKhzZds33l7bI7Pjbrxmn5t4nE03q6:Z8vYiBoAK1MmTddslvcjbkn5ynEq
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2ba3cc42cf104533443a8d882aa988ca_JaffaCakes118
Files
-
2ba3cc42cf104533443a8d882aa988ca_JaffaCakes118.exe windows:4 windows x86 arch:x86
2f1ff4963d244d14a6905aa679dd25b3
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
MessageBoxA
MessageBoxA
kernel32
GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
GetModuleHandleA
msvcr70
__p__fmode
advapi32
RegQueryValueA
Sections
.text Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE