Static task
static1
Behavioral task
behavioral1
Sample
81f1058dbcb3e15a8bbe96f6031e29ce_JaffaCakes118.exe
Resource
win7-20240729-en
General
-
Target
81f1058dbcb3e15a8bbe96f6031e29ce_JaffaCakes118
-
Size
186KB
-
MD5
81f1058dbcb3e15a8bbe96f6031e29ce
-
SHA1
0762400245fdea45bed8fb38567f2673eb482d7b
-
SHA256
3477521ee00977911a28b42c931aa005a5d2a9b4abfb798c19a444652f73796a
-
SHA512
f9fcdaf6b8155911da37d0d7fa56545203614d50b219ae955df1244f6f382e2d5e1d352a290797257cb7bcb44f5e4647a65ac5bd8bd5f7d710b9db9ee4141484
-
SSDEEP
3072:W8jHwsJvdjF7kPoshkrz9G0DgnqwqA6XpXRKqWN8zbDBzlu90USg+068yfpudpPd:WmxJlxgPiJDOq1A6BRXrvq0Uyi1Zzuq
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 81f1058dbcb3e15a8bbe96f6031e29ce_JaffaCakes118
Files
-
81f1058dbcb3e15a8bbe96f6031e29ce_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 160KB - Virtual size: 161KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
360sd Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
889 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE