Static task
static1
Behavioral task
behavioral1
Sample
bb2dde5f335c866847fe36cee96ad669_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
bb2dde5f335c866847fe36cee96ad669_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
bb2dde5f335c866847fe36cee96ad669_JaffaCakes118
-
Size
543KB
-
MD5
bb2dde5f335c866847fe36cee96ad669
-
SHA1
be3fcf5171f1bed16db5aea1c53b867fd67fc525
-
SHA256
2876be42ed6b55e13a856ebf01510dd94f41f75233ef1edf2eea52a91ad26fb3
-
SHA512
69e7af7765a03ed345bfeadc5c6bec09e52bc5e5d5f823208198cb53031fce7b7a6a0059f5f1e873526cafb92061451341ad1e8d3138afbcb3e713af86eb8602
-
SSDEEP
12288:WZGWU2kSliUI+i6sZif2q+11aLRSHsDr:qU1OiUoU2cD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource bb2dde5f335c866847fe36cee96ad669_JaffaCakes118
Files
-
bb2dde5f335c866847fe36cee96ad669_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 200KB - Virtual size: 680KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 13KB - Virtual size: 460KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 41KB - Virtual size: 540KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.d34 Size: 287KB - Virtual size: 288KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE