Static task
static1
Behavioral task
behavioral1
Sample
41303ca1bd2d104803dfdaa94197f3fb_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
41303ca1bd2d104803dfdaa94197f3fb_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
41303ca1bd2d104803dfdaa94197f3fb_JaffaCakes118
-
Size
180KB
-
MD5
41303ca1bd2d104803dfdaa94197f3fb
-
SHA1
09ddb6639b493720b1365a7732c4cfcc36a3d297
-
SHA256
e5bc2cc936efbde4754d0571d97bca14c8122162f8bbe99877bdd8cd9de98c8d
-
SHA512
70899f3fdca9f0bd5746dd9e98f7340bfe33367cf33ba60afc2e2719356dd0ee870cfa05e54f58a220fe50289ae7cbc8e977451be6202b6ae2cf0d6cd624991a
-
SSDEEP
3072:rYrcZm9/uIixLEqZXqgcjSlg7FYlICYM0lKyp1Rrop3jJ5Kz4Qz8cE+rnZ0QfsU8:rYtuhxLEqZ6Ig0vD0lKu1Rkp3PKD8cB2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 41303ca1bd2d104803dfdaa94197f3fb_JaffaCakes118
Files
-
41303ca1bd2d104803dfdaa94197f3fb_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
Size: - Virtual size: 540KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 179KB - Virtual size: 180KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE