Static task
static1
Behavioral task
behavioral1
Sample
8a10c9c39cb07b9d7148b2c45b2ba273_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
8a10c9c39cb07b9d7148b2c45b2ba273_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
8a10c9c39cb07b9d7148b2c45b2ba273_JaffaCakes118
-
Size
85KB
-
MD5
8a10c9c39cb07b9d7148b2c45b2ba273
-
SHA1
298dfa84d0fb8c7475069cc96b8cdb18ca063efd
-
SHA256
e9e0435b00c4cba503cb45793cbeaf1eb9f39a4c80fd04d7cb3b33ce0fcc41d8
-
SHA512
8aaceb7af510d0fb3e5d43cc4d9370fb5a394ec5c17fd6bc3fa779f0daca09534f9a2957d73b7e031583b862ff96d0cecf2eb8bbd38b055cdea9211d9f17a974
-
SSDEEP
1536:Y1mkU7pS6X74WRz5F59bv9x7vU8eHiwaGx9VGBsQmRSPp:v7MgvL9zHvU8589VGBsxRSh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8a10c9c39cb07b9d7148b2c45b2ba273_JaffaCakes118
Files
-
8a10c9c39cb07b9d7148b2c45b2ba273_JaffaCakes118.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 512B - Virtual size: 144B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 25KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ