Behavioral task
behavioral1
Sample
62ccdde3581682ad2fdf6d72817244a3_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
62ccdde3581682ad2fdf6d72817244a3_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
62ccdde3581682ad2fdf6d72817244a3_JaffaCakes118
-
Size
477KB
-
MD5
62ccdde3581682ad2fdf6d72817244a3
-
SHA1
5007c33fb05b3192605bd936644c4b9d25d9d77e
-
SHA256
8b4fd975f4e4dc01875b9205745a9ccffd28b134f91b79d1995f46ef5905ac2d
-
SHA512
e2f7c685d7604a7690513f102a12024e5370deaa266e27988d50c3f3262f251e33935b0c5d1ecf79a931945af8fa6b2373b7d1677e8b881e06e062b3e917cf9d
-
SSDEEP
12288:6F9ZCVgwqnL3aqu3TmaFOQ1YUNmHD3IR6Kt:6LAonmNr5QDYR6Kt
Malware Config
Signatures
-
resource yara_rule sample themida -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 62ccdde3581682ad2fdf6d72817244a3_JaffaCakes118
Files
-
62ccdde3581682ad2fdf6d72817244a3_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 141KB - Virtual size: 656KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Themida Size: 331KB - Virtual size: 804KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE