Static task
static1
Behavioral task
behavioral1
Sample
71b6f8e6ad7b427428f6c80d0c1bcf79_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
71b6f8e6ad7b427428f6c80d0c1bcf79_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
71b6f8e6ad7b427428f6c80d0c1bcf79_JaffaCakes118
-
Size
786KB
-
MD5
71b6f8e6ad7b427428f6c80d0c1bcf79
-
SHA1
f54ef9d43983fda37c55c7fdd6ac02b5a868a59f
-
SHA256
5cad67ed671de3c535fd112c3e3db85e2bf185b159d6efebbbb663794acce729
-
SHA512
c1f4296ad6e826dd11d54993c375295769e60c5c0f5713e9ccda9a1fe082cd22ded4463b713379918bd3d231504641f9d47d3f3f899988a92b50623504f156be
-
SSDEEP
12288:UZWtI6RkbLunureZJys73dOvXDpNjNe8XOlLunureZJys73dOvXDpNjNe8L:UuhabbeZJ8NI8qbeZJ8NI8L
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 71b6f8e6ad7b427428f6c80d0c1bcf79_JaffaCakes118
Files
-
71b6f8e6ad7b427428f6c80d0c1bcf79_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 144KB - Virtual size: 143KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 64KB - Virtual size: 63KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ