Static task
static1
Behavioral task
behavioral1
Sample
8638ba433afe236aef8265d25159aca2_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
8638ba433afe236aef8265d25159aca2_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
8638ba433afe236aef8265d25159aca2_JaffaCakes118
-
Size
248KB
-
MD5
8638ba433afe236aef8265d25159aca2
-
SHA1
7caa415dd2c57d785929129fdb5d80e79c4e274b
-
SHA256
2f34fc3069859ff700a8e7d549fc059114a9127ff2b16baf7768c9958af9bf70
-
SHA512
94db590dc58b3fa3e4db622956b6ef2c7b2337fd4bb7012f3d56ff0f182c99a93f83b01f8aff9b6e214b2a4a36bc2fb6ca898b5ea70186f612a37b9770662411
-
SSDEEP
3072:RGhsuKuLe4Zb4h91IKjZSnJTq1a5C2+AVsNlxpUMmtsxorcmPc1u9ViZDJLh:SoEb5nZU/AVIXurqorGuiZDJ1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8638ba433afe236aef8265d25159aca2_JaffaCakes118
Files
-
8638ba433afe236aef8265d25159aca2_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 80KB - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 131KB - Virtual size: 131KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE