Static task
static1
Behavioral task
behavioral1
Sample
756f6d7b85af0439a854cb4981a17cf2_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
756f6d7b85af0439a854cb4981a17cf2_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
756f6d7b85af0439a854cb4981a17cf2_JaffaCakes118
-
Size
1.0MB
-
MD5
756f6d7b85af0439a854cb4981a17cf2
-
SHA1
ba337f6e7aa150e041fc5c67ba0d88b924d9771f
-
SHA256
f9c724dbc7960c2c5445e6d7c5ba0e1c936f22cf7e01b19a90599b5991a85798
-
SHA512
0c9e1ff54d316aed726257014391797984f783530f32445ecdddb20d65a0edbf0ef09f3a12619f16a3b5bc42487599c2d244b572884d1a80d04df2d0a739f91b
-
SSDEEP
24576:G0FQT30yZV/U2nBLsIHJcJbw9Q63301+EYPb8QB7B:Guu3zV/UesQJcJb2330sjPTN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 756f6d7b85af0439a854cb4981a17cf2_JaffaCakes118
Files
-
756f6d7b85af0439a854cb4981a17cf2_JaffaCakes118.exe windows:1 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
.textbss Size: - Virtual size: 1.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 3KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 891KB - Virtual size: 892KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 319B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 164KB - Virtual size: 164KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ