Static task
static1
Behavioral task
behavioral1
Sample
27a5e27583cbd7ae97a93c5cbe4cee20_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
27a5e27583cbd7ae97a93c5cbe4cee20_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
27a5e27583cbd7ae97a93c5cbe4cee20_JaffaCakes118
-
Size
39KB
-
MD5
27a5e27583cbd7ae97a93c5cbe4cee20
-
SHA1
d3f9ae1d4f572bb07ba55e92841697261e354803
-
SHA256
22555a59401171af810354603ceb2257e629b4561de6dcd0b0c57eb52ecf2661
-
SHA512
9d1d148182eb9284c45c5fa139a2d00b5aa1b9ab7d448942975adccccd0cf53738f28c60a664e97e3542893f4a6b941083b34b580114ce9e513d6485ff360d2e
-
SSDEEP
384:fdGIFUPBeruKtghUkMSgw4T8EjbZaKeUl3aDf1KDc8gg6if3Rc4ZsH1yYO9+ICLK:fdXEBwVtghU9wY57eUr3ycsHEfvCC9
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 27a5e27583cbd7ae97a93c5cbe4cee20_JaffaCakes118
Files
-
27a5e27583cbd7ae97a93c5cbe4cee20_JaffaCakes118.exe .js windows:4 windows x86 arch:x86 polyglot
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.code Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 30KB - Virtual size: 32KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE