Static task
static1
Behavioral task
behavioral1
Sample
f749961c2509dd8be39eaf3beb1ec7bd_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f749961c2509dd8be39eaf3beb1ec7bd_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
f749961c2509dd8be39eaf3beb1ec7bd_JaffaCakes118
-
Size
84KB
-
MD5
f749961c2509dd8be39eaf3beb1ec7bd
-
SHA1
51461be5af255e79eae9383f43478b0f7243f743
-
SHA256
74204b9d8063abef4afe143b200d3f53b6a0f64311c32b1e19c708b5695cef4a
-
SHA512
f8a8d467f6dc5d962cbdae7130d28575ac9f4a8dd03d5efaa313e4c2e4a149dfa73228fccb8261e370c2e707587a17d6cbf8b27e67fad9f14c728b21b9e61412
-
SSDEEP
1536:19uspOGd1kiOATs0xh4gAkXBKoQICY1IjbijgFBiCR7K2n7IiNnGyYuS:1gspOGTq0s0x/XvQICY1KmjK5x7BNnGx
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f749961c2509dd8be39eaf3beb1ec7bd_JaffaCakes118
Files
-
f749961c2509dd8be39eaf3beb1ec7bd_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.text Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 50KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: - Virtual size: 91KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ