Static task
static1
Behavioral task
behavioral1
Sample
6333e5508029d2432206b76a2cae28c6_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
6333e5508029d2432206b76a2cae28c6_JaffaCakes118
-
Size
1.8MB
-
MD5
6333e5508029d2432206b76a2cae28c6
-
SHA1
9dc2385abd594bf8a98bd7b2d99b8ec79332596f
-
SHA256
272599633144bb86b38840bc339e7e631e470a7a9b72f9634830cfc11d4b0e9c
-
SHA512
1c8e054ba80ae686aa18a39334245377d1a11a25ee9908414bf8509bd3f859e6e1d12abef18e4c7f6d30052f30fabb66db084775c740b2ce3be65f3c60d843be
-
SSDEEP
49152:ML69IwWqWo7Na3DIDwXInj1YHDjLdKUqeDU4SM8:M2OwWqWea3DIDnZYIUqz4SM8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6333e5508029d2432206b76a2cae28c6_JaffaCakes118
Files
-
6333e5508029d2432206b76a2cae28c6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 928B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
WinLicen Size: 1.8MB - Virtual size: 1.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE