Static task
static1
Behavioral task
behavioral1
Sample
b6b4a446a3f14f2c92464fec9991abce_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b6b4a446a3f14f2c92464fec9991abce_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b6b4a446a3f14f2c92464fec9991abce_JaffaCakes118
-
Size
129KB
-
MD5
b6b4a446a3f14f2c92464fec9991abce
-
SHA1
77f014c28511a8ca972d4d9be6da50e140e523af
-
SHA256
e1e6b6c484780ea3306afb90c6cc4536789e1beddd1b3172549ac778300f7d24
-
SHA512
d8412a630684e18eb5509b89cc82b825e651fcf4c31234aaa03f2b685d553c144de4f3a621fdd4bce98f3fd538d35db74c4608dd75823046ac37bc22b9385dcc
-
SSDEEP
3072:YgYVW8D7n4ldFuOJvlGir4FM6p+rNF4sWReclFBu8P/0hU+:cjoFuOjr3JrNF4sWReE6AX+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b6b4a446a3f14f2c92464fec9991abce_JaffaCakes118
Files
-
b6b4a446a3f14f2c92464fec9991abce_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
e9nz Size: - Virtual size: 176KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
v Size: 124KB - Virtual size: 124KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
qzplm4ho Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE