Static task
static1
Behavioral task
behavioral1
Sample
89417500715068809c0dfc2f43f9af37_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
89417500715068809c0dfc2f43f9af37_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
89417500715068809c0dfc2f43f9af37_JaffaCakes118
-
Size
324KB
-
MD5
89417500715068809c0dfc2f43f9af37
-
SHA1
a3a03e32aeec77adff0dacae492711f1a47c0723
-
SHA256
ead9baa66a38f5143ffd4ddd69f91fd3d4d9b147745f5070e8d10e5d7f1f9d36
-
SHA512
564b03dd80d298a4d21bfb383d0cb7432712d182e00e707a2dfc9a2e93fa69d07f21b541cd713e992658d5c2543f4ab8ee1ad69f1103900b76d6b5b4e0d53e3a
-
SSDEEP
6144:It03PhVUjcujmGg8PSYK5TCh2Mx+DG8ZTuY1Q2LmdMaeO7:c0/TUcVGgWKtCPcDG8ZNQ2LmdMHO
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 89417500715068809c0dfc2f43f9af37_JaffaCakes118
Files
-
89417500715068809c0dfc2f43f9af37_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.CQSN Size: - Virtual size: 616KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CQSN Size: 287KB - Virtual size: 288KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CQSN Size: 36KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE