Static task
static1
Behavioral task
behavioral1
Sample
f86294dcc2ab5c2190244e58d25eaa1d_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f86294dcc2ab5c2190244e58d25eaa1d_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
f86294dcc2ab5c2190244e58d25eaa1d_JaffaCakes118
-
Size
3.2MB
-
MD5
f86294dcc2ab5c2190244e58d25eaa1d
-
SHA1
51173ba8dcc615eb78202bcded26861a3d8c8965
-
SHA256
3769d79643b5ca22efe6a43d745526d46a50c4d2e3fed0c10e7deac557b225f2
-
SHA512
f7505619ed3fa7e4100520b36c53c157a2b057bdcf415e96c4a48670303ce5c2a6931ee2e716ca018ee4cca2987ccd21097ee36869aefd260d979b1e4a4be79e
-
SSDEEP
49152:VZv/PuhptutwUZRsOjlkJQns9VNWxG9SJTrTZdRk/pBBwuvbk6xHyl8Y3p5JC:VZ/PuxutRsOPNk9qtdCvBJbnVqTp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f86294dcc2ab5c2190244e58d25eaa1d_JaffaCakes118
Files
-
f86294dcc2ab5c2190244e58d25eaa1d_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.Upack Size: - Virtual size: 6.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3.2MB - Virtual size: 3.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE