Static task
static1
Behavioral task
behavioral1
Sample
f995634fa8083fb8312aad84004beb34_JaffaCakes118.exe
Resource
win7-20231129-en
General
-
Target
f995634fa8083fb8312aad84004beb34_JaffaCakes118
-
Size
226KB
-
MD5
f995634fa8083fb8312aad84004beb34
-
SHA1
96fb404136a93e30d72f30a39ea818b5d14cd145
-
SHA256
cf3bb4d716fb70ae656485fae67c7a0c7c52e837b461bb1839c8aa3e93fb91f1
-
SHA512
a94471e5e03ce72e8a70ea20a62c694716dda4738aef523cb900e85fe13dc99832580e24bfc32593a2739be61ed8f70256e755fded917ce2642765261624f550
-
SSDEEP
6144:cqVEXG7c3BRGxZ4RgI2jxzS1ObHk+tAzZ/zoS:7VMf3BRIU2jxzSED7AzhzoS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f995634fa8083fb8312aad84004beb34_JaffaCakes118
Files
-
f995634fa8083fb8312aad84004beb34_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
jinb Size: - Virtual size: 680KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
uryg Size: 222KB - Virtual size: 224KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE