Static task
static1
Behavioral task
behavioral1
Sample
a3340fa0593705ac4ca5a1f32b8038a7_JaffaCakes118.exe
Resource
win7-20240708-en
General
-
Target
a3340fa0593705ac4ca5a1f32b8038a7_JaffaCakes118
-
Size
803KB
-
MD5
a3340fa0593705ac4ca5a1f32b8038a7
-
SHA1
2c68a973118fce7addb1b58c0aaa4131299f5bf2
-
SHA256
837e9dd424b04cedff5eebd9743146d6048d8a7fefc0f18059bcc6154f6f857d
-
SHA512
5cc7930a8a55a8131fd8f035903a9343841f2e27ecf1dce5dadc64e61ebc7eb76da27afb52fdae273b3e6ea9471f114436b6b7005f2f7f08b409bb8330021d4c
-
SSDEEP
12288:fVdM3zQs7Tc+a17au+3owKhAzu4rf9fNZ0OVlfdUVmHcqHcTBR21/8ljC9cRFahk:NuDq7mzKUp0mfd8Ecq8u+pyh1CjlGYT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a3340fa0593705ac4ca5a1f32b8038a7_JaffaCakes118
Files
-
a3340fa0593705ac4ca5a1f32b8038a7_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 243KB - Virtual size: 568KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 588B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
4s4s8989 Size: 494KB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE