Static task
static1
Behavioral task
behavioral1
Sample
98eb834f3eb75474bfdc349a832e1a5d_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
98eb834f3eb75474bfdc349a832e1a5d_JaffaCakes118
-
Size
304KB
-
MD5
98eb834f3eb75474bfdc349a832e1a5d
-
SHA1
0dde08c314098280388363f28e729c9b6e0a8141
-
SHA256
5f601cc3af274820eadde298875ee89a2f8f41736dd24d1fac89793e72102643
-
SHA512
068551220efa99bce8d561414b00706dc536caeb62659feb647acc495524c622c3222b545497d868624bfff09be11c89714c9ef77fe8e908ca2ba7c9733fa12c
-
SSDEEP
6144:Ebk4qmS76BwnicLEL6lW++vDIunQ9ejNmaLjrmJ0JD7GOvV:Eg9S2nrELjhwMmu2+J5vV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 98eb834f3eb75474bfdc349a832e1a5d_JaffaCakes118
Files
-
98eb834f3eb75474bfdc349a832e1a5d_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
fdwqdfas Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
dsfasfas Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
zaasdasa Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
adadsada Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
kjfdskjh Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ