Static task
static1
Behavioral task
behavioral1
Sample
433387311dde74469d2496bce83f2734_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
433387311dde74469d2496bce83f2734_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
433387311dde74469d2496bce83f2734_JaffaCakes118
-
Size
424KB
-
MD5
433387311dde74469d2496bce83f2734
-
SHA1
18aa64a545fc6cebc0a3a304189fc12c69d21de9
-
SHA256
c65f08aeda33aa11e0546fa860b72aa28debd0c50b8c75b3969706b3e91247bc
-
SHA512
41614942c166d9cd592133b1ba465d8d97f0cb82ffdf352a143746be14e57007b17cb22ec764999675b233b89a23c6607a5049ffa5c35cc18b487f8f1bb42a16
-
SSDEEP
3072:B+HW5ygycUdba5ooQovo7oQoXUSphyZ8qBj2Eddf5gDRNZfPxXEe3RCzT9/L1BJ8:7pIhu8n9SpXqBj5ddBgL3x3RCzTB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 433387311dde74469d2496bce83f2734_JaffaCakes118
Files
-
433387311dde74469d2496bce83f2734_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
CENSORED Size: 160KB - Virtual size: 156KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CENSORED Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CENSORED Size: 256KB - Virtual size: 255KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ