Static task
static1
Behavioral task
behavioral1
Sample
fe20dd865d7c2f24b70606c225c2bc26_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fe20dd865d7c2f24b70606c225c2bc26_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
fe20dd865d7c2f24b70606c225c2bc26_JaffaCakes118
-
Size
329KB
-
MD5
fe20dd865d7c2f24b70606c225c2bc26
-
SHA1
935688b84543ee045cae815402969b2984ba76a6
-
SHA256
e05bed8716f5b836151aa41bf94d01dadbdc2dd13be4ca1acb240d4b1da019a7
-
SHA512
9201a5e62fed40feb01c155bf537dadff5571e256531f78b780d7ee60579a9ed03388fd128ed5a93118bca9b0319f205f453ae3e824736b36f9d6cce6c3528db
-
SSDEEP
1536:313g110NVcbFZMElp9ZdAfKdTQUo0NHrh65jzN2JUdr:lwr0rcHMsdtTQiNLhSt2+dr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fe20dd865d7c2f24b70606c225c2bc26_JaffaCakes118
Files
-
fe20dd865d7c2f24b70606c225c2bc26_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 192KB - Virtual size: 191KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128KB - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 5KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ