Static task
static1
Behavioral task
behavioral1
Sample
0faa864a4261d916787c60b5cd856c7c_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
0faa864a4261d916787c60b5cd856c7c_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
0faa864a4261d916787c60b5cd856c7c_JaffaCakes118
-
Size
143KB
-
MD5
0faa864a4261d916787c60b5cd856c7c
-
SHA1
1d3e1fcd827e44814312abf044b18d1fee6276a9
-
SHA256
c6361532b0eea93e9e27bab442350bbd54272f66c5baf986a15d5870c88f0154
-
SHA512
42515e35a61e966780f2273a6ec3f765732636e29d183ebdeb4c83ac40ab265a199c699598879f5841296b329b9e1b739a1cb66ecc2553db95ee920d22c2a24c
-
SSDEEP
3072:0LGvJXzyZ3JAc3+E94KM2inCB7qKq8mei42CVv:QkurjRbBLVi4xVv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0faa864a4261d916787c60b5cd856c7c_JaffaCakes118
Files
-
0faa864a4261d916787c60b5cd856c7c_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
2fsfmed8 Size: - Virtual size: 104KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
kt5u Size: 122KB - Virtual size: 124KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xqx Size: 20KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE