Static task
static1
Behavioral task
behavioral1
Sample
a95b03eba32af7f0b832acac7106f5c5_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a95b03eba32af7f0b832acac7106f5c5_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
a95b03eba32af7f0b832acac7106f5c5_JaffaCakes118
-
Size
127KB
-
MD5
a95b03eba32af7f0b832acac7106f5c5
-
SHA1
60ecd97983e52cc00e39751d5b8f6e07c7aa044c
-
SHA256
c31f3c3b2533ef7bef9d1452d16ce175efe7151b769edcb3712d2ea8d6222b6d
-
SHA512
679d1a0391fb6481c85f18f90426b684c4a337539d19ede5c9f94098da35330287f1b559c13f8fb1fc2d51a1de24ab847f52edd298f01608b0331ee215ced255
-
SSDEEP
3072:6VRg/344r/Jx291SQvME+/TYvKuoZv13sZRA6+Yssff2FMVd:oKQ4bJx291/vX+LeKXZdsZRA6l
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a95b03eba32af7f0b832acac7106f5c5_JaffaCakes118
Files
-
a95b03eba32af7f0b832acac7106f5c5_JaffaCakes118.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 90KB - Virtual size: 90KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 33KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ