Static task
static1
Behavioral task
behavioral1
Sample
f9b7fd36b4dd0a0ac189405e97a253eb_JaffaCakes118.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
f9b7fd36b4dd0a0ac189405e97a253eb_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
f9b7fd36b4dd0a0ac189405e97a253eb_JaffaCakes118
-
Size
716KB
-
MD5
f9b7fd36b4dd0a0ac189405e97a253eb
-
SHA1
d9bfa521d72f57890cd40b01105cb081222a6c27
-
SHA256
22ce05547e7fc1a5b25507237f0582c6fd51d4f303ea44590cf781eecae855a1
-
SHA512
89df5852bfee792409af03c9007cae2a158adb52e8496830b658288e449d2f0b51f5095d4db2b8f39bbe7c8be5359efd2aa517e205a7cb8055182694e21724a2
-
SSDEEP
12288:/wBn/xLSjN3reJu+7+HtLSIzNonSgDmqjNahEEF8DSW0Q7dqDty44xH21VSCAv/o:GxLS5CJu+qtSIzNN9OxaQ0hy44xH2TS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource f9b7fd36b4dd0a0ac189405e97a253eb_JaffaCakes118
Files
-
f9b7fd36b4dd0a0ac189405e97a253eb_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 713KB - Virtual size: 713KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ