Static task
static1
Behavioral task
behavioral1
Sample
818a887f67b766e35ac6f0463f65155f_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
818a887f67b766e35ac6f0463f65155f_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
818a887f67b766e35ac6f0463f65155f_JaffaCakes118
-
Size
23KB
-
MD5
818a887f67b766e35ac6f0463f65155f
-
SHA1
e96b81771f70bdba46c4969e2440cdf1d77bd80e
-
SHA256
02cf232de108e07c9c506f9e2640edc384498d77f210b45bdcfebdb3d09cef50
-
SHA512
c8c1734301da24910b74c6af77986c8b3b5961c64a0186cd91747d8a28b279d0e0283e3ea2226a69ed0c54afcc78a1301605a038a35f473e516a8de51462a8e3
-
SSDEEP
384:FmjBSiX7Y7PonfpGF9y0r6stGeqwI7vbXzdAvyo8DwcVppeSnWHqJw:WJ79fSZustabXz8yo8DNpWHV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 818a887f67b766e35ac6f0463f65155f_JaffaCakes118
Files
-
818a887f67b766e35ac6f0463f65155f_JaffaCakes118.exe windows:5 windows x86 arch:x86
d1933a47238d13c8234faabc2b09c7cf
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
setupapi
SetupInstallFromInfSectionA
kernel32
GetProcessHeap
HeapFree
GetCurrentProcess
LCMapStringW
CreateThread
InterlockedIncrement
MultiByteToWideChar
ExpandEnvironmentStringsW
GetCurrentDirectoryW
SetLastError
HeapSize
GetLocaleInfoW
GetVersion
CreateEventW
GetUserDefaultLCID
CreateFileMappingW
SetEvent
LocalAlloc
lstrlenW
GetCurrentProcessId
LeaveCriticalSection
GetLastError
ReleaseMutex
SetEndOfFile
GetCurrentThread
CreateProcessW
GetModuleHandleA
ReadFile
lstrcmpW
LoadLibraryW
ExitProcess
DeleteFileW
VirtualAlloc
FileTimeToSystemTime
SetFileAttributesW
HeapAlloc
FindResourceW
EndUpdateResourceA
GetTickCount
advapi32
RegEnumKeyExA
RegCreateKeyW
shell32
DllCanUnloadNow
PifMgr_OpenProperties
DllGetClassObject
Shell_GetImageLists
IsLFNDrive
SHChangeNotifyDeregister
IsNetDrive
GetFileNameFromBrowse
PathQualify
DragAcceptFiles
RestartDialog
DragFinish
SHDefExtractIconW
DllInstall
SHStartNetConnectionDialogW
user32
GetClientRect
Sections
.textbss Size: - Virtual size: 12KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
.text Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.debug Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ