Static task
static1
Behavioral task
behavioral1
Sample
0eef83c03e6c67a35d46611c8fdf5279_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0eef83c03e6c67a35d46611c8fdf5279_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
0eef83c03e6c67a35d46611c8fdf5279_JaffaCakes118
-
Size
86KB
-
MD5
0eef83c03e6c67a35d46611c8fdf5279
-
SHA1
deb9a0afe55a991014ea8bb3aaf5f0b74dd19990
-
SHA256
71f0c546cc700670153b7afd62b3d20c418c818b5d01abfb6b9989881d46d9d1
-
SHA512
f54f485051d03b3d436b666e73f30ccef6242c6a75f865ea33a9d89745bef3aae40bb9f7dd0fb180d4bc7461bb92699e3a580aa6e387e584a9ae857229b655de
-
SSDEEP
1536:f/Wn9265nZQS5iGmBG20arl0XmgptmceJNHZ2RYRzkoC:f/Wn9p575Rm2XmgGceJNwiRz8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0eef83c03e6c67a35d46611c8fdf5279_JaffaCakes118
Files
-
0eef83c03e6c67a35d46611c8fdf5279_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.nsp0 Size: - Virtual size: 272KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp1 Size: 90KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp2 Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE