Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_40db48b7cea95513415a9d3dccd1ebf3.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_40db48b7cea95513415a9d3dccd1ebf3.exe
Resource
win10v2004-20241007-en
General
-
Target
JaffaCakes118_40db48b7cea95513415a9d3dccd1ebf3
-
Size
5KB
-
MD5
40db48b7cea95513415a9d3dccd1ebf3
-
SHA1
09acff206fc4cb0454eecabf0bb11a0caab52679
-
SHA256
e07ca3e761d2d97fc86c0c614407b9855d611fce3f87cac935d0c182f51e89f4
-
SHA512
652aba7c578a89d9800fdbb150f85b5f8cec869c054ade0cfae4a4ff2837bacf1a2d9a45c38ea5255d484ab8d77222c41b0a594f455c5faaf5787a509d7f9324
-
SSDEEP
96:lgRQFoOzEnKlkNvd522+2Kv816xDpy7f5q6SSa3UOdY:YQFo2En3vds2KE1gXHHUz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource JaffaCakes118_40db48b7cea95513415a9d3dccd1ebf3
Files
-
JaffaCakes118_40db48b7cea95513415a9d3dccd1ebf3.exe windows:4 windows x86 arch:x86
c3e5b18e8b056ce353ce73e27657435c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
shell32
SHLoadInProc
DragQueryFileW
ShellAboutA
ShellHookProc
comctl32
ImageList_GetImageInfo
ImageList_SetBkColor
ImageList_Write
LBItemFromPt
ntdll
LdrLockLoaderLock
LdrSetDllManifestProber
LdrShutdownThread
NtAlertThread
NtClearEvent
kernel32
GetConsoleCursorInfo
GetConsoleCP
GetStdHandle
FreeResource
Sections
.text Size: 1024B - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE