Static task
static1
Behavioral task
behavioral1
Sample
164595ae567298d866cefa6dc1bc6f57_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
164595ae567298d866cefa6dc1bc6f57_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
164595ae567298d866cefa6dc1bc6f57_JaffaCakes118
-
Size
184KB
-
MD5
164595ae567298d866cefa6dc1bc6f57
-
SHA1
9fe33f692dc9d1326a21a5b94ccc3c3f340b1033
-
SHA256
fdbccce4e54bdd9b97f374aefdaa034d2a0866865a66380705087763a73a7009
-
SHA512
26d9535bb302c4b7abfe70861648fca614e232671fe86cb674cee6390e904ee81fce4ad76ea58f46a22e429a6a77b71ad8847728c679099a0c45979492a2be15
-
SSDEEP
3072:8xIGoTQPVfA0NO2fddZsY80N9pM6Su0I1Iyx3Lz5vNlPvyF9:8xZo+o0NJdLsY8YZXVNlPvyF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 164595ae567298d866cefa6dc1bc6f57_JaffaCakes118
Files
-
164595ae567298d866cefa6dc1bc6f57_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 172KB - Virtual size: 168KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ