Static task
static1
Behavioral task
behavioral1
Sample
e99b12f27df09c8cb7a5777020940af9_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e99b12f27df09c8cb7a5777020940af9_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
e99b12f27df09c8cb7a5777020940af9_JaffaCakes118
-
Size
54KB
-
MD5
e99b12f27df09c8cb7a5777020940af9
-
SHA1
abf7a0cd86c360b33626f74fd4f6bd4db3fb53b3
-
SHA256
8903affe95159cb9eb81edb4e6f10ce73ec716225253beff5f98dd9686a7403d
-
SHA512
f80c3e4d7503064b5c56c9c7ec9d33dd4c72c7e901e3ac2f46bcb6730e456f98b6863884983407f3f103f993c741e6e84f48e6a3e9f6031f44711b9ca391a6b6
-
SSDEEP
768:eTGGzVDZliIWIjlLs89+jNBfnKKOyd9V/p22Z5tcR/vP9vumhS24QYCKeU2NOMBu:F4lM+jlv4bfnXh5cNP9Q2RnKeU2cmfm
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource e99b12f27df09c8cb7a5777020940af9_JaffaCakes118
Files
-
e99b12f27df09c8cb7a5777020940af9_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
8l03y0u0 Size: - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
8l03y0u1 Size: 53KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
8l03y0u2 Size: 836B - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE