Static task
static1
Behavioral task
behavioral1
Sample
e8164af68b74d5accdee8442816d45c8_JaffaCakes118.exe
Resource
win7-20240215-en
General
-
Target
e8164af68b74d5accdee8442816d45c8_JaffaCakes118
-
Size
20KB
-
MD5
e8164af68b74d5accdee8442816d45c8
-
SHA1
cf540bc52b6c9756deab7a8cb4d21923159732cc
-
SHA256
8900d008a65f0023379337f37e48920f0446f4632ba630f3093801e04f76ae1a
-
SHA512
68346de47bede9407e90561e53f34dfc67b6da53f44dd45ae62c192af09ce8df30ce9d07d15d79a05ec5f882a4331e3f6f346c760e53f21d0ca2ce380c52b3b1
-
SSDEEP
96:/lx9XBhvtjXHbjtSJ0in3N9HDXNxOhDE+2DLlI2:/TZXFj3bjti99HDXNSDEJpI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource e8164af68b74d5accdee8442816d45c8_JaffaCakes118
Files
-
e8164af68b74d5accdee8442816d45c8_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ