Static task
static1
Behavioral task
behavioral1
Sample
b2c6bc28f56409bf9ad36b7d90ac7bc6_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
b2c6bc28f56409bf9ad36b7d90ac7bc6_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b2c6bc28f56409bf9ad36b7d90ac7bc6_JaffaCakes118
-
Size
2.2MB
-
MD5
b2c6bc28f56409bf9ad36b7d90ac7bc6
-
SHA1
d68d9180a71882291692c464656a31816d33364a
-
SHA256
be2a0b8bfd16ba198617ebbecd380b0dc63c6c0bd0fbe7655ee71235fad16685
-
SHA512
cf8d1cab2233fff9a2c3e87841b660a5b9e2df897f28a03f694f005fe975b0e1d0ebdbfb0730c4c43b83d748fc97c36dfba3d564d7336ce9e13d90a999893c55
-
SSDEEP
49152:tJbRYzb+/a+ny6o/U0LaaMkA8I0y9apdf:hYu/C6R0tA8I0y9avf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b2c6bc28f56409bf9ad36b7d90ac7bc6_JaffaCakes118
Files
-
b2c6bc28f56409bf9ad36b7d90ac7bc6_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 43KB - Virtual size: 43KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 844B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2.1MB - Virtual size: 5.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE