Static task
static1
Behavioral task
behavioral1
Sample
63e2eee64246df3f9bee86c73e7502ae_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
63e2eee64246df3f9bee86c73e7502ae_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
63e2eee64246df3f9bee86c73e7502ae_JaffaCakes118
-
Size
95KB
-
MD5
63e2eee64246df3f9bee86c73e7502ae
-
SHA1
abb5dee8b589541bd400b48253b4cf94b27240d9
-
SHA256
33287fd160d40a34320cbd17e488ce0106b34d07c42f2e0a136fe6b62de7e3f0
-
SHA512
61c3346c7f15e1f0f649bee6f69167cc68cc3b287a066252b723e85f74723f75e77eb206daab5f5a1b1f5edd7aa6ab3a6e1a6085fde4044f6222446f3d8daf80
-
SSDEEP
1536:W3Y/MBH4GGeXkODrWb/RnOuFFsi2YU/P3nib14foyytvZII1DIzFqM9EnOok:9/fGGeXjPyROuzX2VHk14gy7xwM9OOf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 63e2eee64246df3f9bee86c73e7502ae_JaffaCakes118
Files
-
63e2eee64246df3f9bee86c73e7502ae_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 91KB - Virtual size: 91KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 144B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ