Static task
static1
Behavioral task
behavioral1
Sample
5ff6db07c24376460bbc7fb3cc1f58bd_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
5ff6db07c24376460bbc7fb3cc1f58bd_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
5ff6db07c24376460bbc7fb3cc1f58bd_JaffaCakes118
-
Size
396KB
-
MD5
5ff6db07c24376460bbc7fb3cc1f58bd
-
SHA1
0f710107e44a1efee7ad7d1914853e3cb7de10c6
-
SHA256
09c6d8a5233c2ab0ead988f8726ad04b993b0ac71885093d48889a627823eb18
-
SHA512
9da446e5e1c1eac800737d7299790c8017cc6f63d9241c75aeeb4e576d0794c726f3cc7b60b14dbb755bab3dcc6d1774b48f742787ff66f721433dfe8245c8d5
-
SSDEEP
6144:q58PWz3xnCleQl+sGUKGcsdKq2K1TDI6q7kE4g6W+6JNdhZXkmRbURQfe1nKN4je:E8cC5xMEdf9nIwTwTDXkmxDfeZi42F
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5ff6db07c24376460bbc7fb3cc1f58bd_JaffaCakes118
Files
-
5ff6db07c24376460bbc7fb3cc1f58bd_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 102KB - Virtual size: 101KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ