Static task
static1
Behavioral task
behavioral1
Sample
3e0ca43302d03b30087aa6b074f5dac3_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
3e0ca43302d03b30087aa6b074f5dac3_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
3e0ca43302d03b30087aa6b074f5dac3_JaffaCakes118
-
Size
88KB
-
MD5
3e0ca43302d03b30087aa6b074f5dac3
-
SHA1
dd768947f90fb4f37a44344a2a35f48249a54ba0
-
SHA256
78369d7eb5808e944a5fca120585f7ab7940ed81bfcc153a4d71e54ecc0d0019
-
SHA512
4ee3ee1f726b46aeaf45c886c7cd2d03cf7af0a35c7887a1b75cdebbaa0473954eeb3934dafe322c4fd18c2a3fbca3cc09373e5fd8c6f689fdef0a4f5cd426f6
-
SSDEEP
1536:4lp3+VaLKXtPuzvSh4QVnn2AsH2yruOKeHTKIdu9pe63LSqNM+681Ve:uGXt+vShnVn2iyruObTKIE9R2qDVe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3e0ca43302d03b30087aa6b074f5dac3_JaffaCakes118
Files
-
3e0ca43302d03b30087aa6b074f5dac3_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
roxqw Size: - Virtual size: 96KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dkci49 Size: 82KB - Virtual size: 84KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
df9 Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE