Static task
static1
Behavioral task
behavioral1
Sample
972c61e5376327704832314a9bc7d908_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
972c61e5376327704832314a9bc7d908_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
972c61e5376327704832314a9bc7d908_JaffaCakes118
-
Size
119KB
-
MD5
972c61e5376327704832314a9bc7d908
-
SHA1
839003bbbb098e030214e74094067bd11b01fc31
-
SHA256
c709ef91ee496920de6e0a9b6af5c4313febb2f2a37948acd666e05c04b621ff
-
SHA512
aedf0bec6eec319c2b855e9595b6695aeb050626f313214300cefc8be4f9aa51b29ebb031fc69a6082cfa76dd89dcd69e86895b7b1446b666065c46b7546d452
-
SSDEEP
3072:IuYfxjOGFNwt/ZrNQ+7Ad0kktf9GvoZhTHA0gZbXC9EF:IuYZjXwtxi+7AdqgZbC9W
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 972c61e5376327704832314a9bc7d908_JaffaCakes118
Files
-
972c61e5376327704832314a9bc7d908_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
obsvyxv8 Size: - Virtual size: 208KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
xdxgigr Size: 116KB - Virtual size: 120KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
v4g5sc79 Size: 2KB - Virtual size: 810B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE