Static task
static1
Behavioral task
behavioral1
Sample
397464a2089e1e3a694afb52561053cf_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
397464a2089e1e3a694afb52561053cf_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
397464a2089e1e3a694afb52561053cf_JaffaCakes118
-
Size
152KB
-
MD5
397464a2089e1e3a694afb52561053cf
-
SHA1
ceaeefbe3b9b0bf217fd7ad7838acc7b529361e7
-
SHA256
e84d384ab5fb139ab4d6f8f4e60b2339267be0c94b22d81e9a033d5b8575b484
-
SHA512
3ea309dbfcd4958fb020828fc2dd5028408ff94f004e7ecfbcd1923c3786c52af7a32f3e88a0536f8c0a5c8f5b663559f827f562b28907e5bbd411c542b9dab0
-
SSDEEP
3072:OcSbzkKY38wwIMdF/Oy/OucSbzkKY38wwIMW:OCKXIMdpbvCKXIM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 397464a2089e1e3a694afb52561053cf_JaffaCakes118
Files
-
397464a2089e1e3a694afb52561053cf_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.tqz Size: 56KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.zyt Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.zkt Size: 72KB - Virtual size: 72KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ