Static task
static1
Behavioral task
behavioral1
Sample
ab0f99ebc200eb57b2f48e7fab0fa64b_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
ab0f99ebc200eb57b2f48e7fab0fa64b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
ab0f99ebc200eb57b2f48e7fab0fa64b_JaffaCakes118
-
Size
42KB
-
MD5
ab0f99ebc200eb57b2f48e7fab0fa64b
-
SHA1
9ce5b7783f6126aa3e4b5881c8a349ee5574f9f7
-
SHA256
549c852c4633b8ef8e2c2ed5e53e0f3b33df0385a20fe09a29283342f0dc588a
-
SHA512
c7728063c86b786df1d72bcf108210be120d096f0a6b23a52fe689a0750dcaa0156c4a6d31953c118b40d7e8f79f2143fa3b5c1f46a23b8c61bd4976e41737d3
-
SSDEEP
768:uFWifwc3TvTatkPmuGCghf1m3s9YtOj+4bcUVMVGudURtg:oWifwIv2Wm3CghfM3ptOjJ6FU/g
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ab0f99ebc200eb57b2f48e7fab0fa64b_JaffaCakes118
Files
-
ab0f99ebc200eb57b2f48e7fab0fa64b_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
956ptd0 Size: - Virtual size: 88KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
956ptd1 Size: 41KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
956ptd2 Size: 366B - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE