Static task
static1
Behavioral task
behavioral1
Sample
8489b5e20c024c327793d1ff5de32919_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
8489b5e20c024c327793d1ff5de32919_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
8489b5e20c024c327793d1ff5de32919_JaffaCakes118
-
Size
132KB
-
MD5
8489b5e20c024c327793d1ff5de32919
-
SHA1
c13badf9f5bc0fe9bf60e7bde5d735364ffaf260
-
SHA256
2b79d92decf5e6051753b09a55bfad73109867df5e55e7f2036d848df39943ad
-
SHA512
66c23caec4eae169089efd6e2ec6c9c7fa82230db29d211a1d3dfe1e1c74093549f146294c0c9bf7453a6e8809a7cd79777d1f1c8356a2cf6f397ddba2f267d8
-
SSDEEP
3072:fojBjnBI588oQl6BnUP1ehytDuJn+g0EfgAQU8:+j888oQcBU9eWQzBf0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8489b5e20c024c327793d1ff5de32919_JaffaCakes118
Files
-
8489b5e20c024c327793d1ff5de32919_JaffaCakes118.exe windows:0 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
DLu-sEUA Size: 512B - Virtual size: 264KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
YQn>b'P< Size: 131KB - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE