Static task
static1
Behavioral task
behavioral1
Sample
006f370d71f60e4f449565d64c67ab37_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
006f370d71f60e4f449565d64c67ab37_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
006f370d71f60e4f449565d64c67ab37_JaffaCakes118
-
Size
36KB
-
MD5
006f370d71f60e4f449565d64c67ab37
-
SHA1
247a478b05869606455f62f7e4fc9410684d0b54
-
SHA256
97fa4860ddfd62eae525d2d021f026d85b361bf0f3220598a35b5f4c16db1ea8
-
SHA512
620d7ab8d3407529a917daa27e16b36a88c3d4228011bfc74292cc97614ff6d328ab7943bbe4bce60610398fcf61b49fce533c083ee54df206b2bde9dcfbefe0
-
SSDEEP
768:dCs1VT4DmmGWFW4ckEC9vpCnY9m6y+nHVNxo1HDDme:d1TClGi1cOVM3Axo1HDN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 006f370d71f60e4f449565d64c67ab37_JaffaCakes118
Files
-
006f370d71f60e4f449565d64c67ab37_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.Upack Size: - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 35KB - Virtual size: 64KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE