Static task
static1
Behavioral task
behavioral1
Sample
39c8e855d5077e7b217ad56f4bff3df2_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
39c8e855d5077e7b217ad56f4bff3df2_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
39c8e855d5077e7b217ad56f4bff3df2_JaffaCakes118
-
Size
325KB
-
MD5
39c8e855d5077e7b217ad56f4bff3df2
-
SHA1
a3321e8a010b5a535c48eb853b97b93d76cd0894
-
SHA256
cef156e00c769cb3d123144208dfd5b3728e1c5a9b21638e3f0681d64f1e88cf
-
SHA512
4feedd46ca20e19465a87bb1e5803a20d4e4ed1fdc9e669cbe488c34c9f76723f10bd104ae19e56bd1d9a0c3d26f918da78b53a970fef7ee9c58f8877bb41d7e
-
SSDEEP
6144:Y7C/yY5d+Qz89v/ty8UczHlrQV4e6ZGpNDL6k63BLhd69HzDOO:YCddWZtyK7aV4e3NDL6koFwHzb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 39c8e855d5077e7b217ad56f4bff3df2_JaffaCakes118
Files
-
39c8e855d5077e7b217ad56f4bff3df2_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 462KB - Virtual size: 1.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 75KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE