Static task
static1
Behavioral task
behavioral1
Sample
758f89335cebe33be7ec7da0cde383cc_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
758f89335cebe33be7ec7da0cde383cc_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
758f89335cebe33be7ec7da0cde383cc_JaffaCakes118
-
Size
621KB
-
MD5
758f89335cebe33be7ec7da0cde383cc
-
SHA1
f67d3c2433c7edbc0fd96e9f8fbdb454accc454a
-
SHA256
7aa9ef4b44384a74e44041d553e9f86530e4d46e15f7b84eafc32be84e659d8f
-
SHA512
dc5680d43b184a26ca80e714b95a1f2e61d76626e4d5d3f6b4b14273f9156c90d6ba0039105de430b4255406d4523cd77742a5f9f170f6ff2ca10bf3e1e18627
-
SSDEEP
12288:vECgB5Ld8gMxBr6ml6NKOJa25ZF3Z4mxxn8E7PIxyJ00riPeZdRjfd0:MB/Ld89PGml6kO0IZQmXn8E7wxn6d0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 758f89335cebe33be7ec7da0cde383cc_JaffaCakes118
Files
-
758f89335cebe33be7ec7da0cde383cc_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 20KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 255KB - Virtual size: 284KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 344KB - Virtual size: 344KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE