Static task
static1
Behavioral task
behavioral1
Sample
8d6eca5bac73897515ddb3b81e078f86_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
8d6eca5bac73897515ddb3b81e078f86_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
8d6eca5bac73897515ddb3b81e078f86_JaffaCakes118
-
Size
125KB
-
MD5
8d6eca5bac73897515ddb3b81e078f86
-
SHA1
64d93f89e2de1bd08bf9cdad147dfefff18a76cb
-
SHA256
cecacb2003471d0cb14e0e6b6689aaae3107f43dbb6d6237158d8e4b3711615d
-
SHA512
401841f9313cbc26f57dfbfa7083ff45de163053cf0973682bf6fa505a125b26579a4758e2d648ac0e3e377706c7070009022cac1b64f406a582bc22ac6891f3
-
SSDEEP
192:MOWkctu+ahw5ELnAZiQI5KFh5BeuE+SPckJi+G9adIdYF/8v3eaUo:MOW1tupKGLAfIK37eHRhG9JdYF/8vua
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8d6eca5bac73897515ddb3b81e078f86_JaffaCakes118
Files
-
8d6eca5bac73897515ddb3b81e078f86_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: - Virtual size: 20KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.r Size: 56KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE