Static task
static1
Behavioral task
behavioral1
Sample
477d3647a7e03ac6c68598024b780e3b_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
477d3647a7e03ac6c68598024b780e3b_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
477d3647a7e03ac6c68598024b780e3b_JaffaCakes118
-
Size
1.3MB
-
MD5
477d3647a7e03ac6c68598024b780e3b
-
SHA1
b1f0165778daeb99905d5829adfc4596d6478f89
-
SHA256
d0e41288723adc0565c8a7c93c45a789a87e4e3db04c475547952f86eb6c6b69
-
SHA512
6379ed30c9b1cb6730143b30d8f1aa725e06efe7e1f52e37ff303edbf47638bd2fd51b3b34d9a42205d7931bc1d60303a25a2db5f6958d07c70c4f965eafbe68
-
SSDEEP
24576:AQ6GqBMcLFZHmWkOq6Cmluez/7IUOyoJArimpTXs5bc+9YNGuBUj8H3bWIXKn2up:AQIRLFcdOdCm8ewUOfBWS63yIXK2up
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 477d3647a7e03ac6c68598024b780e3b_JaffaCakes118
Files
-
477d3647a7e03ac6c68598024b780e3b_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 7KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 928B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
marr Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE