Static task
static1
Behavioral task
behavioral1
Sample
0acf7248aa74ec9b58550595a1172453_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
0acf7248aa74ec9b58550595a1172453_JaffaCakes118.exe
Resource
win10v2004-20240226-en
General
-
Target
0acf7248aa74ec9b58550595a1172453_JaffaCakes118
-
Size
401KB
-
MD5
0acf7248aa74ec9b58550595a1172453
-
SHA1
4d0adc0bde94671c685a0c625e417e56068f5ea5
-
SHA256
6b353f0da6ee387b1b4d3e7cbd5f4fcb5e9e90ea7d52f50ef98704b500f66b37
-
SHA512
4ee9acc1096fa99cff384375f125925147910c372e18648ceae4e1a5af1ff35c50cadc6b4caeda82e7cd3d45b9fe7f4bd58f95fdfd7068fd9686e895c670b6e6
-
SSDEEP
12288:u4awNCsummsCorIhCUoZZ7pcTsXcFOG6ref/ER:u4alBsCorIAUoL7CycFOo/I
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0acf7248aa74ec9b58550595a1172453_JaffaCakes118
Files
-
0acf7248aa74ec9b58550595a1172453_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 24KB - Virtual size: 21KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.xur Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE