Static task
static1
Behavioral task
behavioral1
Sample
8106f0d2ea7ff0c3d08849ec431fd038_JaffaCakes118.exe
Resource
win7-20240704-en
General
-
Target
8106f0d2ea7ff0c3d08849ec431fd038_JaffaCakes118
-
Size
483KB
-
MD5
8106f0d2ea7ff0c3d08849ec431fd038
-
SHA1
4eff81bac44100e9246ce0763b9082a6c6941a6e
-
SHA256
134c93290cd38d05e429f030b94fff976612166283417fda3f610ecf86b14ae6
-
SHA512
8662fd21d3a921b551d3a845359917d0152684d4c74dfcdef106a8146fe7a7ce187cd0ff9801771257028b295f9f6afc5e36da61804b7be0a049e80077936898
-
SSDEEP
6144:55Ix5IvwtdAv3YqcB9KhBqasaXifuXO9QhLJmp5Zjr/xtK+8PL9Ws9VCvcSSvvDw:5g7tdY3pcyhBqasR8OFxI+0ivcSSvtA/
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 8106f0d2ea7ff0c3d08849ec431fd038_JaffaCakes118
Files
-
8106f0d2ea7ff0c3d08849ec431fd038_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 60KB - Virtual size: 58KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
����a Size: - Virtual size: 1B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE