Static task
static1
Behavioral task
behavioral1
Sample
fe64406a2d8c0c8e5f10b700d4efd447_JaffaCakes118.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
fe64406a2d8c0c8e5f10b700d4efd447_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
fe64406a2d8c0c8e5f10b700d4efd447_JaffaCakes118
-
Size
344KB
-
MD5
fe64406a2d8c0c8e5f10b700d4efd447
-
SHA1
05fd5831a5fa2e49752ed9cf9c73b3fc5d0b3205
-
SHA256
ed0ee745fd51cb671aab902598c42871e5bf840d09f0d9c528117c9ecf7da36d
-
SHA512
c26c24b479cb973bae6add2dc8bbc35fc70a087cac2a4105105a920ae5ee78af7907e801f47630d72f3aefea5fe459c40fdfa26eaf1954939d878eb9ce880b21
-
SSDEEP
6144:IWfLLGq9YebsRmrYaDgKhGwc7Al1h/EaowP72dGjgN+IdH0to:IWDLGQWJw0AlDMaSIj+dHwo
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fe64406a2d8c0c8e5f10b700d4efd447_JaffaCakes118
Files
-
fe64406a2d8c0c8e5f10b700d4efd447_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 72KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 15KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ