Static task
static1
Behavioral task
behavioral1
Sample
8a0531dda9a817e0e64e4b6d5f911ccb_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
8a0531dda9a817e0e64e4b6d5f911ccb_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
8a0531dda9a817e0e64e4b6d5f911ccb_JaffaCakes118
-
Size
44KB
-
MD5
8a0531dda9a817e0e64e4b6d5f911ccb
-
SHA1
3420df1252a0e3fc91fdd650d6a0c2f776e3a9f4
-
SHA256
8bf896172d14218dd740d96f9c0399e1d32dc9251fd5dcc588ba7d23b7e7e5d7
-
SHA512
fb9f13dc17dc7729bca5c32c9253e8511b89ff189c9716c66114c0cb9ddc81e3d63cde0e507854b53f99b2b50265a56993abc5a59c7b7af0fef2348a5972819b
-
SSDEEP
768:ZrxGdt1YmT1DriRcwlivtW5CwPnZLjAQih5Fxn:BiW02fih5F
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8a0531dda9a817e0e64e4b6d5f911ccb_JaffaCakes118
Files
-
8a0531dda9a817e0e64e4b6d5f911ccb_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.newIID Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE