Static task
static1
Behavioral task
behavioral1
Sample
66d30a72dfa7f667f800e658c13676b9_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
66d30a72dfa7f667f800e658c13676b9_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
66d30a72dfa7f667f800e658c13676b9_JaffaCakes118
-
Size
224KB
-
MD5
66d30a72dfa7f667f800e658c13676b9
-
SHA1
59382cc5b29873d777e31a2275070acf74590e8e
-
SHA256
62e612131fe5450066082a3aac5bb2bbfd5a80f62a5f4eff59d3625314a8abca
-
SHA512
bd798f3447b7932d4dc75e2996cf9cecda31a7e9364e7b63f3d6784f076aa0a74ba0e97031ddacf187ad14b89678c06cfe37e57023432a02c544695a1de9e1b4
-
SSDEEP
3072:xLjbPOaMhkfu7ZSBYfkVoFdRrqo0aRaA/HF673+UWHIfrXLMRR4vKvblBQjS2out:NPtIbNkVsuaRaU6mHGbMRR4vQ+W2oS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 66d30a72dfa7f667f800e658c13676b9_JaffaCakes118
Files
-
66d30a72dfa7f667f800e658c13676b9_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 60KB - Virtual size: 59KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 156KB - Virtual size: 154KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ