Static task
static1
Behavioral task
behavioral1
Sample
963072a02361cf36bf94173966330440_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
963072a02361cf36bf94173966330440_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
963072a02361cf36bf94173966330440_JaffaCakes118
-
Size
2.1MB
-
MD5
963072a02361cf36bf94173966330440
-
SHA1
cdff530e13db37e9373c14782a733e712a3abaad
-
SHA256
d86c5b9c86262cb10e8571e0e4f2bf4501b1c146b67e0d9b40cf306b52580e54
-
SHA512
d06260b68ef69381a8d893222abab855be40fb6f2c460d6c64af23b8306125259621d13f6c2c1d9d5d64b4768f81f1fc03c2975242b6539d24c88a57dcffee58
-
SSDEEP
24576:/G/o+otFTo9nxkC/4fpvRhjiiZWmcudazEedc6+2yVbCcKFrnDo6JIv:/+utFsCRls4MrdcJ18rFrDgv
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 963072a02361cf36bf94173966330440_JaffaCakes118
Files
-
963072a02361cf36bf94173966330440_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.5hc7gn Size: 1KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.es8wsl Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.45o$bg Size: - Virtual size: 1016KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rbss Size: - Virtual size: 3.0MB
.loader Size: - Virtual size: 404KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tss Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE