Static task
static1
Behavioral task
behavioral1
Sample
31b4169cc81c7f3b63d62dcf55bc2474_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
31b4169cc81c7f3b63d62dcf55bc2474_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
31b4169cc81c7f3b63d62dcf55bc2474_JaffaCakes118
-
Size
177KB
-
MD5
31b4169cc81c7f3b63d62dcf55bc2474
-
SHA1
2679d6bcfa29a6f3511229b87e66f681f2aab3e8
-
SHA256
5adb3e9785b272986c31c1285ba3e8fcd1b918d5b2443a93840136481303035a
-
SHA512
6ddd32ce9d5088709a4abca68d9d57217b6384adf572d304c245c1d2e73e35e50226e2f4fca0e2848317602f6b7a86dd639abff55df1921dcb178511dab260b4
-
SSDEEP
3072:TKWGNoPDkpott0qSDxdT+eP/HGKrWD1Ix7tiQkYvH0QacLjjj348out:1zDkmt08cjrWD47tiQkYcRcLjj748oS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 31b4169cc81c7f3b63d62dcf55bc2474_JaffaCakes118
Files
-
31b4169cc81c7f3b63d62dcf55bc2474_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
CODE Size: - Virtual size: 348KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: 175KB - Virtual size: 176KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE