Static task
static1
Behavioral task
behavioral1
Sample
bde0e636a045049ee42f4af12b562f5d_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
bde0e636a045049ee42f4af12b562f5d_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
bde0e636a045049ee42f4af12b562f5d_JaffaCakes118
-
Size
100KB
-
MD5
bde0e636a045049ee42f4af12b562f5d
-
SHA1
54f03837a17e45f252e180a9757346e733344bfe
-
SHA256
4861c00dc98c377d690ec2d18a1c519ebcb75b7c22bacb39d1e41e6df19bb264
-
SHA512
108381fadc69072a3a6ae19889cd05f03efd8a8498db5609248a87858590ea398ff45a2f0f4e1d6c67efeea9efab8306d212351dde1df900baee57ace7ed1073
-
SSDEEP
1536:QiY6eldRJoNgeZXVgk8SjodNPvuHqWckV0tAqAfxTmqw:QiYVfRO1WWckWtAqAJTmqw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bde0e636a045049ee42f4af12b562f5d_JaffaCakes118
Files
-
bde0e636a045049ee42f4af12b562f5d_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 52KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 32KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ