Static task
static1
Behavioral task
behavioral1
Sample
6f4251d9c5994fa4e858731f83054a83_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
6f4251d9c5994fa4e858731f83054a83_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
6f4251d9c5994fa4e858731f83054a83_JaffaCakes118
-
Size
85KB
-
MD5
6f4251d9c5994fa4e858731f83054a83
-
SHA1
b899a23ee7c51c7ff7313933ec300b73a2ce8986
-
SHA256
936c11ce502e355524bcb40af4950ffbf303f220d967821abc0993c7efe5b444
-
SHA512
b590e4ccd8e59afe3f36f804997e0db5ff49eee60aa6976ff9f5df9c240bf88f548516af2ef7ee1651557965a1377c9b093fecdfb04b750e77ee2a7eeffbbc3e
-
SSDEEP
1536:TprgsipeNV72QuZHBx2ml/+ppMvrMB9xLdIIvCTW4PcwYBYTib+rq0odOlzP+:tr/ipi2QuHH2i/e8gB9xLdnp4NYBb6qz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6f4251d9c5994fa4e858731f83054a83_JaffaCakes118
Files
-
6f4251d9c5994fa4e858731f83054a83_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
. Size: 1KB - Virtual size: 836KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
. Size: 81KB - Virtual size: 81KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE