Static task
static1
Behavioral task
behavioral1
Sample
4d11a4bc7689c19a02232404ba98c029_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4d11a4bc7689c19a02232404ba98c029_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
4d11a4bc7689c19a02232404ba98c029_JaffaCakes118
-
Size
46KB
-
MD5
4d11a4bc7689c19a02232404ba98c029
-
SHA1
8c8048cea34b5700bb94db03f1992c7b0aac73d0
-
SHA256
dfe08696f0f3f2c8dc8e342f827da99ccea84f2224719eeae00429d4ced9d15c
-
SHA512
1cfde6fe7f7c41d354f0e746ce16b0d84675319a98ab1528e67538666523ee935db6486ee2301845cf8e9a13e581d440cdcbaca70b45361b5e97fbe794e45b24
-
SSDEEP
768:h4xKor4BN5qVYS0AiUVK4i6Pg0KhagJvehhtV3knbRdS0Iv5sdSIZKI3hHHOs6mM:h4gor4z5qVYOiUvi6PopeDabDS085scn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4d11a4bc7689c19a02232404ba98c029_JaffaCakes118
Files
-
4d11a4bc7689c19a02232404ba98c029_JaffaCakes118.exe windows:53888 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
cAddress Size: - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.yzpack2 Size: 46KB - Virtual size: 116KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE