Static task
static1
Behavioral task
behavioral1
Sample
ffaeeee9071cef34ec7e83431860733e_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
ffaeeee9071cef34ec7e83431860733e_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
ffaeeee9071cef34ec7e83431860733e_JaffaCakes118
-
Size
401KB
-
MD5
ffaeeee9071cef34ec7e83431860733e
-
SHA1
d053f64e9d0630adcb9a9df1c4de3c3da2ffcfe3
-
SHA256
0b366adfcdfb5f69dce19a4083115cfd946dd951ee3ca0c9ca04d6a5d3d78b64
-
SHA512
891d4d3212500453e4c42098debe5e5bfe019924b93c45801661dce933fd749b8e77c02c67c5d998f279bf30cc84267b927a321a4bca7268d246f274ea506e12
-
SSDEEP
6144:NOavyIMd/QD4yK8WL3jhmsHzaMX7LtpXyAkfzAjI9ESYqIdXY8xE6zNTVWGR3m2h:4avNK8WL3j3OA7LTClLAjzqtnGP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource ffaeeee9071cef34ec7e83431860733e_JaffaCakes118
Files
-
ffaeeee9071cef34ec7e83431860733e_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 44KB - Virtual size: 41KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ