Static task
static1
Behavioral task
behavioral1
Sample
c189cbfe29c976544415ddbbc754259c_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
c189cbfe29c976544415ddbbc754259c_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
c189cbfe29c976544415ddbbc754259c_JaffaCakes118
-
Size
214KB
-
MD5
c189cbfe29c976544415ddbbc754259c
-
SHA1
bf9311b9860d10a3fa3335e363ff2121d5387170
-
SHA256
b0227b18390fa481361f596453a9feadcdadcfb1b177c9df392717a5b7bf4125
-
SHA512
55bad9906929a8d15b457baab690a1074a4b7d2268c92ebb987fe4b1f376021a99923090b144edd430d82c3d075efb5edcf55100547e973421baa9e6fbf56f58
-
SSDEEP
6144:fV7pfRnfLkI31D8dG2/VM7AzA7woLal/AzGY/YpPMGC7w:fxpfRnd3mdlMKA7womFDLC7w
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c189cbfe29c976544415ddbbc754259c_JaffaCakes118
Files
-
c189cbfe29c976544415ddbbc754259c_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 97KB - Virtual size: 167KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 21KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 28KB - Virtual size: 208KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 53KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 11KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE