Static task
static1
Behavioral task
behavioral1
Sample
7646a7c8fcd4e839d6e68c94338d54c4_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
7646a7c8fcd4e839d6e68c94338d54c4_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
7646a7c8fcd4e839d6e68c94338d54c4_JaffaCakes118
-
Size
40KB
-
MD5
7646a7c8fcd4e839d6e68c94338d54c4
-
SHA1
f02d9e3b306bf0736a1174580a6a0be48ab328b5
-
SHA256
d327f9b6c04df6788e623532e44cbb7e29f260cd3fdbee645d8af4b85b65b673
-
SHA512
33fa1c1d5589fd1b68679ccecc18b8e4a304fc86b190ed337e2f9b75d937fbb04d50b968fb7a40c5f22b4d6cd2a5ab50d1f527fda2eb82980c7498ae2b54c059
-
SSDEEP
384:P0Knsraxh9yax89bVlwxc9LueEAJUA806MpoDVMK+3kZdqdLTB9Y0eT0pqfAUoLU:Dso9u9xlj98NMqD6KyDKoL25
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7646a7c8fcd4e839d6e68c94338d54c4_JaffaCakes118
Files
-
7646a7c8fcd4e839d6e68c94338d54c4_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 28KB - Virtual size: 26KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 968B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ