Static task
static1
Behavioral task
behavioral1
Sample
25217aaf2e893dfb189ea3cbcbbf583d_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
25217aaf2e893dfb189ea3cbcbbf583d_JaffaCakes118.exe
Resource
win10v2004-20240611-en
General
-
Target
25217aaf2e893dfb189ea3cbcbbf583d_JaffaCakes118
-
Size
66KB
-
MD5
25217aaf2e893dfb189ea3cbcbbf583d
-
SHA1
f52d73aef244f75222271c8f9e04ee54b004a183
-
SHA256
5edd89a4f7d421da656276e455231a2278c3110593aea4b97151aa285da8ba50
-
SHA512
5f76dd323dd9ff9752a10af1e96ce308a523d25c3ad4079c13473adedef331969e3cfbc0d4a894b61db0537cda9858bf890d6631cf48482b6f989b65584eed52
-
SSDEEP
1536:PFoX9ACOOUzDTdKbKcNuPraAUd5o96F8N:yACOOUzDTYZNuTard5oXN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 25217aaf2e893dfb189ea3cbcbbf583d_JaffaCakes118
Files
-
25217aaf2e893dfb189ea3cbcbbf583d_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 15KB - Virtual size:
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ