Static task
static1
Behavioral task
behavioral1
Sample
fc47dbd354ca5b79da23222964a37ed0_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
fc47dbd354ca5b79da23222964a37ed0_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
fc47dbd354ca5b79da23222964a37ed0_JaffaCakes118
-
Size
649KB
-
MD5
fc47dbd354ca5b79da23222964a37ed0
-
SHA1
9c1e959dff709d2f70b63c5cd6baff970e318628
-
SHA256
bab0ceb93bb21558ee74349fc4731a9b1efcc6157622f84fcfe0678b04d355c1
-
SHA512
7503ebe8cedf25473c063349628aaf268522b72aa5b96773c2279eef607e0faeea794695ed96cf1020e0d564ea6da05f7a293cacbc3fd856adcf8948b40d3e7f
-
SSDEEP
12288:YzWUpMslJv/ZwAmFiUXFsmDyS37Qp529g4XFe/1rt4Isin7Cw6of0GzbIeF6uMkf:YzNzlvwriUW8yUQpRgFe/1B46px
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fc47dbd354ca5b79da23222964a37ed0_JaffaCakes118
Files
-
fc47dbd354ca5b79da23222964a37ed0_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
c0vn%^9 Size: 432KB - Virtual size: 431KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 38KB - Virtual size: 38KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 176KB - Virtual size: 176KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ