Static task
static1
Behavioral task
behavioral1
Sample
6358e4f4c98b4c6f8a4dc6b112cbd65f_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
6358e4f4c98b4c6f8a4dc6b112cbd65f_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
6358e4f4c98b4c6f8a4dc6b112cbd65f_JaffaCakes118
-
Size
61KB
-
MD5
6358e4f4c98b4c6f8a4dc6b112cbd65f
-
SHA1
c209382cae58aef5aa97d2dfc909e5c99cd4673d
-
SHA256
52e7d96a4bf0871095fabc9facd09f38592141ec9d52b4f328edecb2f47c55fc
-
SHA512
2538bd1c6fe5b2fde647dc1b88aaa87b153f4b5133c28a36ee127dafdc867feeee9c2bd7338cb71cebaaa26397473253519cce75d94b374ff6e2f4d2eb6eb5d5
-
SSDEEP
1536:Dq1AP57A5aVmBryiKpNOoPxf7GxW5erhXgN3TB4MO:D75M5emMisNJ9yxW5erhXg1TBE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6358e4f4c98b4c6f8a4dc6b112cbd65f_JaffaCakes118
Files
-
6358e4f4c98b4c6f8a4dc6b112cbd65f_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 301B - Virtual size: 180KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 60KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE