Static task
static1
Behavioral task
behavioral1
Sample
22b6c3f12cb7b7cbb5d3abc295b7ffcc_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
22b6c3f12cb7b7cbb5d3abc295b7ffcc_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
22b6c3f12cb7b7cbb5d3abc295b7ffcc_JaffaCakes118
-
Size
55KB
-
MD5
22b6c3f12cb7b7cbb5d3abc295b7ffcc
-
SHA1
d6631590fb93b01a53deff742e46f971951bed10
-
SHA256
4378acacefb2380221b894718c2876e27b2afbebaeb4899c2806d7093bc25820
-
SHA512
2266f3c19226483e5716596ec1836689bfbaba8d2105321d560e3e7c439ab4f990104680492f8a9ffdd0ce9aa0160c083bdcf7e6053dba24ae8f209847b9217b
-
SSDEEP
768:KI07zr0IQEXX0/pp0E8ceBi4d3IalnPZk/Rpd1JCmXrz4UwtlWhwlpdtgYnAGkfu:KIsIItHogEJeBi4JdkpgGhj+pgCkfu
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 22b6c3f12cb7b7cbb5d3abc295b7ffcc_JaffaCakes118
Files
-
22b6c3f12cb7b7cbb5d3abc295b7ffcc_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.TEXT Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.RDATA Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.DATA Size: 1KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.RSRC Size: 31KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ