Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_4e04ae53c23c85b945326296df72f5bf.exe
Resource
win7-20240903-en
General
-
Target
JaffaCakes118_4e04ae53c23c85b945326296df72f5bf
-
Size
186KB
-
MD5
4e04ae53c23c85b945326296df72f5bf
-
SHA1
30aad14448cc6e4b726965f4903b14f66e81ccbd
-
SHA256
24f498ccacefdc17908286f5a32ece287150d04a86962bfdfcf596f7550454b6
-
SHA512
e564fac511659910e86b497e5a3301fe054cea356b3181d0213224f7fd5ee6d345427977c273310043425c4ee203270ca2c37174a82e107a767a3f48676c041c
-
SSDEEP
3072:y2Gc/zzK8pXIhEjGANCwjwsiXQrApPen4asY5Kb512gJAYMeEa4Wq7vZ6JOkm1P:T3zzKj6/NCwjpiwJsCKZAYMeEa4NZ6X+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource JaffaCakes118_4e04ae53c23c85b945326296df72f5bf
Files
-
JaffaCakes118_4e04ae53c23c85b945326296df72f5bf.exe windows:4 windows x86 arch:x86
96af23609e165db72cce1c616f867725
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GlobalGetAtomNameA
WriteConsoleA
RtlUnwind
TlsAlloc
SetFilePointer
SetStdHandle
HeapSize
GetTimeFormatA
MultiByteToWideChar
GetCPInfo
EnumResourceNamesW
GetDateFormatA
IsValidCodePage
VirtualAlloc
GetACP
GetConsoleOutputCP
GetOEMCP
WideCharToMultiByte
GetLocaleInfoA
HeapReAlloc
TlsGetValue
TlsSetValue
RaiseException
shell32
SHGetSpecialFolderLocation
SHAppBarMessage
SHGetPathFromIDListA
SHGetFileInfoA
DragAcceptFiles
SHBrowseForFolderA
ShellExecuteExA
Shell_NotifyIconA
user32
MessageBoxA
PeekMessageA
DispatchMessageW
LoadStringA
CharNextA
DispatchMessageA
GetDesktopWindow
wsprintfA
rpcrt4
RpcStringFreeA
Sections
.text Size: 85KB - Virtual size: 84KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 98KB - Virtual size: 233KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ