Static task
static1
Behavioral task
behavioral1
Sample
aa5631a60e7b38d5313a1b0985bba03e_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
aa5631a60e7b38d5313a1b0985bba03e_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
aa5631a60e7b38d5313a1b0985bba03e_JaffaCakes118
-
Size
114KB
-
MD5
aa5631a60e7b38d5313a1b0985bba03e
-
SHA1
bd7a07aa48dc230d06f62e74554b61e817f19d07
-
SHA256
40506f30f89fff7d12b8cec3d6e0be2847a24568cdafab0beb74d54a4710fdb3
-
SHA512
fb594688eb1adf0e8df36367b79c09537da4cf97bc87c933f700aa730886c864d21066d0372659b1009ad21eba7142f21d49aeeb0ecad9b53a272db1a3106693
-
SSDEEP
3072:JtV5t70d2kL8x1ahhlQA5Jb1/vsI+LU/ecGEbYeX:Htwd2kL83ET3ZT8fcGEV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource aa5631a60e7b38d5313a1b0985bba03e_JaffaCakes118
Files
-
aa5631a60e7b38d5313a1b0985bba03e_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
bad0 Size: - Virtual size: 212KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bad1 Size: 110KB - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bad2 Size: - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bad0 Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ