Static task
static1
Behavioral task
behavioral1
Sample
b325e17859ea5fa44dc76f179986dff4_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
b325e17859ea5fa44dc76f179986dff4_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b325e17859ea5fa44dc76f179986dff4_JaffaCakes118
-
Size
61KB
-
MD5
b325e17859ea5fa44dc76f179986dff4
-
SHA1
92e92ca81d171dde3d15b513ce9e3e5ec22beaca
-
SHA256
81904f3312f62efe27e39184e34c8dd54257ec562df76b58a343fe2896de2779
-
SHA512
87e72c461abd1a3e60000bc3efa557cd5d68b26ede767ca7070375b9c56506bb09882191657f96bb5d391f6ace58c5d91651bf409a1e1de56c0233f11a0f49a8
-
SSDEEP
768:HAxGPUXdkYcPZwy3+4V6SfpjByervXtCRYufHHeq8XdR:HNMX9ct3rVp1ysfqe/b
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b325e17859ea5fa44dc76f179986dff4_JaffaCakes118
Files
-
b325e17859ea5fa44dc76f179986dff4_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 12KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE