Static task
static1
Behavioral task
behavioral1
Sample
37412e89881bdf66cc0d40c9e3a99ba1_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
37412e89881bdf66cc0d40c9e3a99ba1_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
37412e89881bdf66cc0d40c9e3a99ba1_JaffaCakes118
-
Size
1.5MB
-
MD5
37412e89881bdf66cc0d40c9e3a99ba1
-
SHA1
1cf7745f5d4cf337cd565da201b39838b749e7e8
-
SHA256
9551d2397f0a588ca9e251c6f0cb17a117d1ecf28f622e7aa23ced5942b19e91
-
SHA512
b6e35648866d026b25c8b9e25982db9aecf119c1cc3556073bddda8de6660e09dddaa3d1f64f9fddaf240717395c91b46bfe0824cc57926cd1e08d99864148ee
-
SSDEEP
24576:L0fEBcSxkMULvsjYVACMTAyKWi60IikiACROJHUD2gTPuYjVTeo8YxEqKs7ILKe:AfESqULfy7KEEvACUWXDuYReJY2ts7I1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 37412e89881bdf66cc0d40c9e3a99ba1_JaffaCakes118
Files
-
37412e89881bdf66cc0d40c9e3a99ba1_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 3KB - Virtual size: 207KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ