Static task
static1
Behavioral task
behavioral1
Sample
439b3698941e82fdde21e743e1a2b1d6_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
439b3698941e82fdde21e743e1a2b1d6_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
439b3698941e82fdde21e743e1a2b1d6_JaffaCakes118
-
Size
241KB
-
MD5
439b3698941e82fdde21e743e1a2b1d6
-
SHA1
243d25d4edd97bb4a289720d4ba7e39d3c91003e
-
SHA256
6b5a34f9f1a40b319c89cc0829a80b302936f74a02e9b4eb68a52d908182e4d7
-
SHA512
d3192f863e3482d81888e071b8451152306e9bd4b87de8a8c0ea2831def0e9f75d7e02ed56ee234ee767904d5da557ed8749472cdc1ac03e90784f3e41d5ee41
-
SSDEEP
3072:p1rz9+/HQLvYKTFmpTZWuetGsGMzMv69D4WrzOSsvZzkuDj3mw2/hSussb8Io+t:7rqHOYYmlIGbi9VrERLvY/h1ssb7t
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 439b3698941e82fdde21e743e1a2b1d6_JaffaCakes118
Files
-
439b3698941e82fdde21e743e1a2b1d6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
a Size: - Virtual size: 644KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
d Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
g Size: - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
j Size: 233KB - Virtual size: 236KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
k Size: - Virtual size: 608B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE