Static task
static1
Behavioral task
behavioral1
Sample
25f290634a8092cc13820b1ade6ec33c_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
25f290634a8092cc13820b1ade6ec33c_JaffaCakes118.exe
Resource
win10v2004-20240426-en
General
-
Target
25f290634a8092cc13820b1ade6ec33c_JaffaCakes118
-
Size
218KB
-
MD5
25f290634a8092cc13820b1ade6ec33c
-
SHA1
3d4913172fedc50d9654effeab0fdcec9bb36014
-
SHA256
618cc1db8b0225b15c13df19b184970c0dfc180415c572ee7a12433a106e41e4
-
SHA512
22d9aaa2ab0780eab101a7c387e491e36f9672c59dc4b97a92488685dc3b62e585d004d8550f44a17034dc12e2dc6f08a2406991418452cb01e417f2b5e6da29
-
SSDEEP
3072:Pq/4dJ1qTbxl++yWnIq80YQH2Hl4SsAB01lJ9w/X1RbP4UYljpqSqm:Pe4dJ1Ubxh9K0YQWFKTx96LgF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 25f290634a8092cc13820b1ade6ec33c_JaffaCakes118
Files
-
25f290634a8092cc13820b1ade6ec33c_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 146KB - Virtual size: 145KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 67KB - Virtual size: 66KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ