Behavioral task
behavioral1
Sample
b9c195dec43f41c5211a06a6323e8cae_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
b9c195dec43f41c5211a06a6323e8cae_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
b9c195dec43f41c5211a06a6323e8cae_JaffaCakes118
-
Size
208KB
-
MD5
b9c195dec43f41c5211a06a6323e8cae
-
SHA1
7aa8e714ea703312bb75ed1ecd0451fb22d07093
-
SHA256
e922a3092fe79a25b10a3952a299e7ea8ff5053a927a8666dfc4b22d49f44939
-
SHA512
a7e993b7bd17fa4509a9558766505f799c91000d1d74337504925451d540cf4861b70687b48ac0bf5f63a44aa9a022ab24d3cecfba02a15928f2fe205b16f6d4
-
SSDEEP
6144:2vsO5p0mMYYCZ8fcmJcAADxJH7/M/rpckC:GeHzDJOxB7/M/r1C
Malware Config
Signatures
-
Detect Emotet payload 1 IoCs
resource yara_rule sample family_emotet_v2 -
Emotet family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b9c195dec43f41c5211a06a6323e8cae_JaffaCakes118
Files
-
b9c195dec43f41c5211a06a6323e8cae_JaffaCakes118.exe windows:0 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 208KB - Virtual size: 208KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ