Static task
static1
Behavioral task
behavioral1
Sample
a07cc8df587bcf2688bb9d2d216e0d4d_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
a07cc8df587bcf2688bb9d2d216e0d4d_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
a07cc8df587bcf2688bb9d2d216e0d4d_JaffaCakes118
-
Size
6KB
-
MD5
a07cc8df587bcf2688bb9d2d216e0d4d
-
SHA1
28016ece8ddf1ec1f5cb011d2551b96c096964ca
-
SHA256
44aa3ea882daf8778e71752b98187cbea9442f7aee911da76751254a62f2befe
-
SHA512
95eac62adb17f0865a7e3c8ae7b6a6f41a0e5ac510fac61edd9f0c8f042195158a4e00b4a28c13b84c40fda6c7638164497b48562982fa33cb6e808f2f29e92c
-
SSDEEP
96:p4hC191X9waRk8rG1Pe7mgwUv0Wv+3JVyhVRnBwSBdBFnTDomnaJKeTiaqZ1Bb:eobkaRfGcr2T8jBZdDnTDoEDaqp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a07cc8df587bcf2688bb9d2d216e0d4d_JaffaCakes118
Files
-
a07cc8df587bcf2688bb9d2d216e0d4d_JaffaCakes118.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
���� Size: 3KB - Virtual size: 5.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE