Static task
static1
Behavioral task
behavioral1
Sample
f81c9d4cea1016c042ad265fe9b58841_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f81c9d4cea1016c042ad265fe9b58841_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
f81c9d4cea1016c042ad265fe9b58841_JaffaCakes118
-
Size
352KB
-
MD5
f81c9d4cea1016c042ad265fe9b58841
-
SHA1
c7588d8eac627e8f968152223d936cf304c6968e
-
SHA256
61f105aab6ed4d3028fdd7b8dcfc99e1b04291f1d7625789f6f83dc20b5f8cfe
-
SHA512
e32f2412cdbb7022bdea3ac368512be5a020845cfc64371c2af573d67060d0b8f6c4a1be83d83088cac3109359924a84020f24dbfd3ab0b4dd7c9b10b046e3c4
-
SSDEEP
6144:BUm4RNIx673t/QU9fk73DUTkxQPol6YzF0zd6KKP+bpn1trrAqLs0o8u:Km4RS6x/zfg3DUTWx10zAKRpXHcou
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f81c9d4cea1016c042ad265fe9b58841_JaffaCakes118
Files
-
f81c9d4cea1016c042ad265fe9b58841_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.nsp0 Size: - Virtual size: 1.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp1 Size: 351KB - Virtual size: 352KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp2 Size: - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE