Static task
static1
Behavioral task
behavioral1
Sample
47eb4ac8d276f48e037b96a3cccdc669_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
47eb4ac8d276f48e037b96a3cccdc669_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
47eb4ac8d276f48e037b96a3cccdc669_JaffaCakes118
-
Size
572KB
-
MD5
47eb4ac8d276f48e037b96a3cccdc669
-
SHA1
a70810f8e2908a4aafa5c8a746129f9fc07fb939
-
SHA256
8b707a9e89aed2a84ae807b7bc257938878ed5de2c93a67113b17db6f2573059
-
SHA512
da60218124e556d0daff7d62e5f63fa58ba03fce95a19e4759a2a80b2ea19b0d478973f0d1e7cce12a65863fb727263d90d2e70a371114d113dc2b43c993b5bb
-
SSDEEP
12288:lWSl0MaEq0USMFFBdMElIwIWhJ0a3qo0olzmrJA89CVe/aC4LQYX:lWib2jEEkW2ePlzwA8UVe/14lX
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 47eb4ac8d276f48e037b96a3cccdc669_JaffaCakes118
Files
-
47eb4ac8d276f48e037b96a3cccdc669_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
.nsp0 Size: - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp1 Size: 571KB - Virtual size: 572KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.nsp2 Size: - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE