Static task
static1
Behavioral task
behavioral1
Sample
Client.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
Client.exe
Resource
win10v2004-20240412-en
General
-
Target
fdc4ef07e9591edb90b0edc15a573d84_JaffaCakes118
-
Size
79KB
-
MD5
fdc4ef07e9591edb90b0edc15a573d84
-
SHA1
fc55ddf7d184da0d552f8f01cfbd066bd41bee00
-
SHA256
4dd81531f20ef441070c414ed50f3f67553116513240f7bc3ab35a8af3f993e1
-
SHA512
a31dee6d00010233d7f124947f1e0d6e3c344f3d3abe054fbc15cf72ced6e5bbb8b89c0a46b7b6f8a70c4dcff6469f282b3896a515dbde0b8da540162fd0dd27
-
SSDEEP
1536:+DGdAcHzWJnuV7J6iuE15o0zds1kkeY9QAhxgAYsBSRGTK9NuO0+Rm5/8rg5q:LP6nuVIpE/Lzds1kk9RhxgA9BSRo8NuK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/Client.exe
Files
-
fdc4ef07e9591edb90b0edc15a573d84_JaffaCakes118.rar
-
Client.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 155KB - Virtual size: 155KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 177B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 576B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ