Static task
static1
Behavioral task
behavioral1
Sample
27f1097bd3634f2f7eecbe075037bc01_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
27f1097bd3634f2f7eecbe075037bc01_JaffaCakes118.exe
Resource
win10v2004-20240704-en
General
-
Target
27f1097bd3634f2f7eecbe075037bc01_JaffaCakes118
-
Size
692KB
-
MD5
27f1097bd3634f2f7eecbe075037bc01
-
SHA1
62e9dcab21703495875682f5ae59da7214325f30
-
SHA256
9a2cf61cff4c04ca15d02a95efd1a0af49ab001b9e62de3842be69717f2ba789
-
SHA512
d015859935185e78381ceced31212fb4605f95597d5cdc5e963fb4f5448182fc5a74cb1d9bea2d9317cc602f93a399314f3f80e995b55324e9f22af942730b5e
-
SSDEEP
12288:icmudUN6wwOFElE7nZVeGePFrCs1jaULBIulv2ocZGuU3IRhTe4qh6rfdkM+:xR6NAdErZoGs1jtLBIuEo7N3IHTe4qhN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 27f1097bd3634f2f7eecbe075037bc01_JaffaCakes118
Files
-
27f1097bd3634f2f7eecbe075037bc01_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.packed Size: 512B - Virtual size: 128KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.RLPack Size: 113KB - Virtual size: 130KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE