Static task
static1
Behavioral task
behavioral1
Sample
6a1dd354bb29bd381d021626e72e9046_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
6a1dd354bb29bd381d021626e72e9046_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
6a1dd354bb29bd381d021626e72e9046_JaffaCakes118
-
Size
169KB
-
MD5
6a1dd354bb29bd381d021626e72e9046
-
SHA1
6f66a9a333aed821127668718793cb4d29b671ff
-
SHA256
56168562508844dc355bd0481380a9cc625ccf816b8a78b9d2b24d9bc75f0035
-
SHA512
659313fa077167fbf2c5c728a8678138d28fb224657a63bf6ec7a8e06da5a01bd603c02f67d4a66bf4c8763aa4d42a51be834550ff787153a9daa10d3d6bba73
-
SSDEEP
3072:B8Zc0hTH53F/y0nzTd6UjIWVvn+oEyDCKCYn89hR3zA3l9WjZJzhPc7nC4sVUW8P:p0XXzxHhvBDCjlB3zaz2Z/c7n88N3B
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6a1dd354bb29bd381d021626e72e9046_JaffaCakes118
Files
-
6a1dd354bb29bd381d021626e72e9046_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 5KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text1 Size: 74KB - Virtual size: 75KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
drmllbg Size: 76KB - Virtual size: 76KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE