Static task
static1
Behavioral task
behavioral1
Sample
afb72f558229e1f2ef6274411d856605_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
afb72f558229e1f2ef6274411d856605_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
afb72f558229e1f2ef6274411d856605_JaffaCakes118
-
Size
112KB
-
MD5
afb72f558229e1f2ef6274411d856605
-
SHA1
e8d06b326be6aad8f52b6a46ab2c4a1b7a65415d
-
SHA256
490257b60d759b7770b3ff1662a007c88b46c424d133aa289d8d22343ff046dd
-
SHA512
217e1460dc453dea102af82dbaaea981f8594fd90b21ac267cebc1bfb0d7a21962abe1a545f84898d9fdab2d1a72a4e71cd316c7ef41428706c535389d824528
-
SSDEEP
1536:V/nFj2+GHtOY5IbzZpUowU+fMCRgAFHQasMiKyIyCHGV68KqOBfXDSB/BOKZC01K:V/nFC2v+fRFR/PQyBdq6fXDSBJhf9dC
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource afb72f558229e1f2ef6274411d856605_JaffaCakes118
Files
-
afb72f558229e1f2ef6274411d856605_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 3KB - Virtual size: 172KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 103KB - Virtual size: 104KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 5KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE