Static task
static1
Behavioral task
behavioral1
Sample
06cc12eddc4a2c8db306d2db0d78152b_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
06cc12eddc4a2c8db306d2db0d78152b_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
06cc12eddc4a2c8db306d2db0d78152b_JaffaCakes118
-
Size
15KB
-
MD5
06cc12eddc4a2c8db306d2db0d78152b
-
SHA1
d3c8a28a9b8b2a77cb54e196fa9c07395d3e4b9a
-
SHA256
fb60d0b5c1c6106e716a82ea10f901d197e1124d0e04433f26fac9d404691c05
-
SHA512
59c8e7b75c0290ccecd4ad1fc56ccd950ac4842980b0ad2cd0a1af0fcb5af5dae63bca632e9d49fcfd7c19842d852924bd84a8fe5981eee682d255b49088b707
-
SSDEEP
384:I7pKyiyHqpbmgDrAQTOCDjX3TiFSlMSQI9aHJehNKFFzwFG:QKyWpvDtOkz+SSSQI9GgXKwFG
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 06cc12eddc4a2c8db306d2db0d78152b_JaffaCakes118
Files
-
06cc12eddc4a2c8db306d2db0d78152b_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.Upack Size: - Virtual size: 52KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE