Static task
static1
Behavioral task
behavioral1
Sample
e9a4d3ce9227515b55429bf1f95897e8_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e9a4d3ce9227515b55429bf1f95897e8_JaffaCakes118.exe
Resource
win10v2004-20240319-en
General
-
Target
e9a4d3ce9227515b55429bf1f95897e8_JaffaCakes118
-
Size
43KB
-
MD5
e9a4d3ce9227515b55429bf1f95897e8
-
SHA1
ed89138b4bb29ffe0b09351168f4b878e5897aff
-
SHA256
1bc83d1ffc38f60117268e102815870a9d7920f390f60f96e2d5d0ea15afec95
-
SHA512
cce51f63e7351997a67e49b294948b29e8f24cf7dfed66a24f4751e359a7bfa4ebfaa53c667bcb52113beb655cb3815e6e3da36b81ecd9f2dd936dc59cae128c
-
SSDEEP
768:sL2/GuRJFl2JAzuBs9AlB+RagZYPKXbY+zIXX+ztBaDo9YH2Q0/Y6:62/GuRJF8JAzss9AlWag9bpYDo9A90/5
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e9a4d3ce9227515b55429bf1f95897e8_JaffaCakes118
Files
-
e9a4d3ce9227515b55429bf1f95897e8_JaffaCakes118.exe windows:0 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 16KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 22KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ