Static task
static1
Behavioral task
behavioral1
Sample
82718eca9ca95b7e5a455b0c56da032c_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
82718eca9ca95b7e5a455b0c56da032c_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
82718eca9ca95b7e5a455b0c56da032c_JaffaCakes118
-
Size
317KB
-
MD5
82718eca9ca95b7e5a455b0c56da032c
-
SHA1
d3afa35da6b3b30a19a4a15ffc95c293692864ef
-
SHA256
128d109362cca576283571260b3206da719434d74bf9072afe43ec727148d024
-
SHA512
e1babf7ba644c56d41c1e0fd57c9ae9719b829b9aff323c3ab36c88a284be304a11341ea87d3d77fced5d74ade1f94fcafc84fe894d09d7ebef76d972f8259fe
-
SSDEEP
6144:zZvERPh5qe7/JFB7XYdjSYGioU8DmiUtH:zaRP2e7/JFTD1UtH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 82718eca9ca95b7e5a455b0c56da032c_JaffaCakes118
Files
-
82718eca9ca95b7e5a455b0c56da032c_JaffaCakes118.exe windows:4 windows x86 arch:x86
6aec7bb6203792df8b8a923a8d042495
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryExA
DeleteAtom
GlobalUnlock
GetProcessHeap
CloseHandle
GlobalAddAtomA
GetProfileStringA
EnterCriticalSection
GetStdHandle
HeapCreate
GlobalFindAtomA
SetCommBreak
GetOEMCP
VirtualAlloc
LocalFree
GlobalLock
SetConsolePalette
lstrcat
LoadResource
RaiseException
GlobalFree
user32
BeginPaint
DrawEdge
GetClassInfoExA
GetForegroundWindow
GetActiveWindow
GetDC
GetWindow
GetFocus
GetWindowTextA
IsIconic
CloseWindow
ReleaseDC
ShowWindow
GetClassNameA
EndPaint
GetParent
AlignRects
ValidateRect
GetWindowTextLengthA
wsock32
WSAAsyncGetServByPort
WSACleanup
WSASetBlockingHook
WSAStartup
WSAGetLastError
linkinfo
CreateLinkInfoA
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1024B - Virtual size: 700KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ