Static task
static1
Behavioral task
behavioral1
Sample
a83aa2e512ec88566ab2d07e36cbc035_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a83aa2e512ec88566ab2d07e36cbc035_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
a83aa2e512ec88566ab2d07e36cbc035_JaffaCakes118
-
Size
17KB
-
MD5
a83aa2e512ec88566ab2d07e36cbc035
-
SHA1
2d8924c24a8bca8cd248aa6961c8fb3ded553e9a
-
SHA256
452b8407cfd6e1efb152c381d4241f36f4004200da170c9e6ecf9f851c24175b
-
SHA512
05d73a6543587b488e19ada36e720961ef3a7c55e59f18b0347240f3ec63e0dd982ad00b9bf9e73653cba1bc4cb8f14f6b7b7d820bc4ea894d837794943b4eaf
-
SSDEEP
384:qoIDw1+akgRzLO0H510e7aHrZ7ewmA767/CfH/7:qVDlb4OI5/7aN7eJA7676ff7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a83aa2e512ec88566ab2d07e36cbc035_JaffaCakes118
Files
-
a83aa2e512ec88566ab2d07e36cbc035_JaffaCakes118.exe windows:4 windows x86 arch:x86
d76f4237a8ae158292f09835997a1d9f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateProcessA
Sections
X�2�[� Size: - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
��:�xɳ6 Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
%�4M)�2 Size: 10KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ