Static task
static1
Behavioral task
behavioral1
Sample
23b1bf4c59b435f3dc7b6eff15ddc363_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
23b1bf4c59b435f3dc7b6eff15ddc363_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
23b1bf4c59b435f3dc7b6eff15ddc363_JaffaCakes118
-
Size
5KB
-
MD5
23b1bf4c59b435f3dc7b6eff15ddc363
-
SHA1
563551cbafe94caffe290784a663dc17e2f14d53
-
SHA256
1c718865fe2098460b6f6a642d5f357526fed38c2ca9c716323d3e11fd858d89
-
SHA512
bcf59383e60303c80d220b6b7811b4fdf3c421ca60f4804f2f8e8a5b25a917531ba1c9c8a4649fb81d212584206df1b4f49ff589b2fd983d579056afc1a7d897
-
SSDEEP
96:EvGOXc+cdRjlW6dPiYtyLLlnT06m+ApLl3xAvCeyxM2b0QlZOw:Ev5IHtiYyJQ6m+0x36CeVpel
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 23b1bf4c59b435f3dc7b6eff15ddc363_JaffaCakes118
Files
-
23b1bf4c59b435f3dc7b6eff15ddc363_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 66KB - Virtual size: 65KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 47KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ