Static task
static1
Behavioral task
behavioral1
Sample
3dee24b44e4e4ab08734b02c24cbad7c_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
3dee24b44e4e4ab08734b02c24cbad7c_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
3dee24b44e4e4ab08734b02c24cbad7c_JaffaCakes118
-
Size
260KB
-
MD5
3dee24b44e4e4ab08734b02c24cbad7c
-
SHA1
2ae1f22f324091df002a468e50e7274df04ff1ef
-
SHA256
421782bbd5a4473efdf27ea7f54df49ba7ccc93f6764f047da6f8e7ce5f289ec
-
SHA512
8ad53da82cea8e5d8e3b62bf51d23e1b322daccbb95f9819b02917883c0664bc546e18f0f93462012b47efabd2cd51cc55ef5fa6741ef518566d837f48914951
-
SSDEEP
3072:SED7iB7hgD6d/llXMV+YyhH5CfEgljK9v9VAiLPnkQqkVdbSjoudEEw+VkoH9H5m:SEDuBVgeHRgCHsMT9BBdYHEzodHJ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3dee24b44e4e4ab08734b02c24cbad7c_JaffaCakes118
Files
-
3dee24b44e4e4ab08734b02c24cbad7c_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
xIZmbPwr Size: - Virtual size: 220KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
KFnP7j3I Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
BUjDetUO Size: 236KB - Virtual size: 236KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
5rFhg1lC Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
LMsksbWO Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
5rFhg1lC
-
BUjDetUO
-
KFnP7j3I
-
LMsksbWO