Static task
static1
Behavioral task
behavioral1
Sample
16ca6e06eeac99ece5fd439ea4485a04_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
16ca6e06eeac99ece5fd439ea4485a04_JaffaCakes118.exe
Resource
win10v2004-20240508-en
General
-
Target
16ca6e06eeac99ece5fd439ea4485a04_JaffaCakes118
-
Size
667KB
-
MD5
16ca6e06eeac99ece5fd439ea4485a04
-
SHA1
4ffea84e09f9f5295bf4c490dacdae35087e5c9b
-
SHA256
f5bf3dbf660bf6ea1a4e07047c8a215fec577902ebb9179fb1f84d070cd54aee
-
SHA512
7ed6cf585d2fdfa5cc72de2b07b4f3aa1d5c164bd25858bc9d740f21042cc68f39cec92f33b5a1878b401edfc6ebac3ef139f4cdd2b5c63c875c124548c2e39d
-
SSDEEP
12288:x6mNXJh/FQr8pzOY4ed2aKlDjS4mkjbcM7POojhMoiSNy//Zty6oIqO:x6mNXvpJO3YulSkH3PbjhNwn9
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 16ca6e06eeac99ece5fd439ea4485a04_JaffaCakes118
Files
-
16ca6e06eeac99ece5fd439ea4485a04_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.BJFNT Size: 512B - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.BJFNT Size: 43KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE