Static task
static1
Behavioral task
behavioral1
Sample
3bcd5f8b4d47cb59a0994550a26674b0_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
3bcd5f8b4d47cb59a0994550a26674b0_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
3bcd5f8b4d47cb59a0994550a26674b0_JaffaCakes118
-
Size
171KB
-
MD5
3bcd5f8b4d47cb59a0994550a26674b0
-
SHA1
a54c6e0f9ae7750a432130b8de12cdfd82f3f3c1
-
SHA256
1ecaec56c0963135f27932b7ee58f4f39e5f315e0b37d3482501219ac97179f1
-
SHA512
6227a9594464f7b28778674a640cf0617d5d30bb753ecf5aa1b78838b67a717958ac38b9c0a85c259a7fbcfd9f1d43eca81924dac552ab0fd9250f5cb9547b17
-
SSDEEP
3072:xcxlxsguWVh0WDTo80Oa2TmT7rbS7m8aXNplAS8Oi4Xw:xm7sgumh0Krxa2TmTbS7mZmd4Xw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3bcd5f8b4d47cb59a0994550a26674b0_JaffaCakes118
Files
-
3bcd5f8b4d47cb59a0994550a26674b0_JaffaCakes118.exe windows:4 windows x86 arch:x86
7bcc1ee13c77eec043b1750d69ad1b51
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetThreadLocale
GetVersion
GetProcAddress
GetCurrentThread
VirtualAlloc
LocalFree
CloseHandle
LocalAlloc
GetFileType
GetSystemInfo
GetModuleHandleA
GetVersionExA
LoadLibraryA
GetLastError
user32
CharNextA
GetFocus
GetKeyState
DispatchMessageA
TranslateMessage
BeginPaint
GetMessageA
EndPaint
advapi32
RegOpenKeyW
Sections
.text Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 684B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 154KB - Virtual size: 153KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 144KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ