Static task
static1
Behavioral task
behavioral1
Sample
0610da767320c952d85e0d48a2f3c32e_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
0610da767320c952d85e0d48a2f3c32e_JaffaCakes118.exe
Resource
win10v2004-20240419-en
General
-
Target
0610da767320c952d85e0d48a2f3c32e_JaffaCakes118
-
Size
1.0MB
-
MD5
0610da767320c952d85e0d48a2f3c32e
-
SHA1
d416dbb77b78fac502cb7a07e55a3d1c2eca281a
-
SHA256
cca59dcec8965c6bcd8d213eb03025a109531c02a02984ae4ff29a554291e898
-
SHA512
2bf2652807fdb4cee531f3f609dc3705a5c7ad530fddbe26c1ba6d2c76d54165e1e21de238f6a58e81542d1e321e75cb0d99bb313d4eed392e5cc9f65f7915f2
-
SSDEEP
24576:kIOmYAC0oDBlUrihoh6NDXSuzVxXKy0Yiy053mfbcAgEmEVH:XxY8oDeihzSuzVxG3Nu7H
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 0610da767320c952d85e0d48a2f3c32e_JaffaCakes118
Files
-
0610da767320c952d85e0d48a2f3c32e_JaffaCakes118.exe windows:0 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
�ext Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 4KB
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ