Static task
static1
Behavioral task
behavioral1
Sample
4cfa326806bc1e254a83d1829ddea5ca_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4cfa326806bc1e254a83d1829ddea5ca_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
4cfa326806bc1e254a83d1829ddea5ca_JaffaCakes118
-
Size
464KB
-
MD5
4cfa326806bc1e254a83d1829ddea5ca
-
SHA1
0294d5dce585eb3b3273ab84c9dc3d4861a889fe
-
SHA256
2935c6aa48f25d31b230d41739cbe81771af21e32043100512b9d84893ea5ede
-
SHA512
84739c950d34b53c4279c07bb34f07b6cfbab80e1c51e503261790b2915f81e5b2c032c06c86f466868dd374f02b26bdc0d8047b26d3b7c67473e52982928839
-
SSDEEP
12288:QDcFc//////YdOxF5xv2gFid85GxUX+3eCboPsmqZ:ScFc//////Yktxv2gFc85g3Lav
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4cfa326806bc1e254a83d1829ddea5ca_JaffaCakes118
Files
-
4cfa326806bc1e254a83d1829ddea5ca_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 42KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 8KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 4KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 414KB - Virtual size: 413KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ