Static task
static1
Behavioral task
behavioral1
Sample
41c711d1938f3afa66e8520e9abdbafd_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
41c711d1938f3afa66e8520e9abdbafd_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
41c711d1938f3afa66e8520e9abdbafd_JaffaCakes118
-
Size
697KB
-
MD5
41c711d1938f3afa66e8520e9abdbafd
-
SHA1
e04370a419300e4edca7705ab30caf58687a5f80
-
SHA256
08109c0b3d5802dcfe654da25aa4c5cf6a89da1d680ce989836585a395adaa0f
-
SHA512
df711546a35e5964f4ab1955a757e1567184595582ddce73c0e573a0c9860a525c78651b42022d8712332b2ac7fd89e5cd2823ed07c80e667c95b81e6aa87ee7
-
SSDEEP
12288:XgHyrpVzOSN//c2OP8cdp4v1kWQt4RiC1eyP0iaKkyY8bEPjiV8oJl9zhU:rrLO2c2OP8cNbuljpaKk5yE2V8s9zhU
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 41c711d1938f3afa66e8520e9abdbafd_JaffaCakes118
Files
-
41c711d1938f3afa66e8520e9abdbafd_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 24KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 936B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc_0 Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
���� Size: - Virtual size: 1B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE