Static task
static1
Behavioral task
behavioral1
Sample
b82856c858c18c6dd930b057abec920d_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b82856c858c18c6dd930b057abec920d_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b82856c858c18c6dd930b057abec920d_JaffaCakes118
-
Size
147KB
-
MD5
b82856c858c18c6dd930b057abec920d
-
SHA1
3887070e0468a495e0742b4aa547261cee006a7e
-
SHA256
577d50f158974ef263ba7c6812335c6723da0849f307bd510fe9ec0dd0526c4b
-
SHA512
559b640278888a7cee11d1be13b9a39d60f34b26ba28ddd29e4078528a64ce0e2e5b16a0c0499832149541539df2e701f7ad959873e3e0ba59b3462ab74c746f
-
SSDEEP
3072:gR1+aJe1mgawzxsBub861jIHxowucYH+hgs9b1jPiiNbePxu42ZUD9C/GPcOWGbK:gRUTV5n58xiwYR2k9C/GPWx5+qng0
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b82856c858c18c6dd930b057abec920d_JaffaCakes118
Files
-
b82856c858c18c6dd930b057abec920d_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.Upack Size: 410B - Virtual size: 336KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 146KB - Virtual size: 176KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE