Static task
static1
Behavioral task
behavioral1
Sample
16d6d5d41ead664791da43e3edc375a7_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
16d6d5d41ead664791da43e3edc375a7_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
16d6d5d41ead664791da43e3edc375a7_JaffaCakes118
-
Size
49KB
-
MD5
16d6d5d41ead664791da43e3edc375a7
-
SHA1
bb63fe5e1b682d1d270b243e256af71b78c12bd3
-
SHA256
9de49e96e2b34c462d3aa5af778a420d3a83f3d544a70d738d70402bdd08c1ab
-
SHA512
ce531480387cb6c6a54af867a353404b8dae44a3bcef06d5623b917d1a210ac7bad30514ea5b42d32e9cc6d5446293d42641e1031d14228e7d5e2a6d394b0795
-
SSDEEP
768:I2amZ3zQmPDAqNe5wXMmD8SgeB7he9cJEBTaOibziZzpWsckWDsGBOLJ:I2JZ3zQgcqkHSgebAcJwfibzitRCDsdJ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 16d6d5d41ead664791da43e3edc375a7_JaffaCakes118
Files
-
16d6d5d41ead664791da43e3edc375a7_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.nsp0 Size: - Virtual size: 224KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp1 Size: 48KB - Virtual size: 52KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp2 Size: - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE