Static task
static1
Behavioral task
behavioral1
Sample
c1ebd0a90f334a5d01ea40f350169444_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
c1ebd0a90f334a5d01ea40f350169444_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
c1ebd0a90f334a5d01ea40f350169444_JaffaCakes118
-
Size
101KB
-
MD5
c1ebd0a90f334a5d01ea40f350169444
-
SHA1
28855df91905b6fb619cbea886b6e11c8ac8e475
-
SHA256
ead65e4aa8959e1d45e09f6729aceba02b8935dfed9b4f3838265706a6bb6a73
-
SHA512
d23d4a329eb1e7aaea3d7adc1a9948dd464cb981b66731b41994f986efad9caaffc697b91a24ac66727501db8a34b71ac14ce89c1af6406c02afe36f54b06251
-
SSDEEP
1536:0R/k7uHUyeDnjkUCOap7/LRtH5yaOzKthXUn1VzBJW3DaSlB+vTRbA6:f7+wtCOap7/LMattNU11WzakB+LRb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c1ebd0a90f334a5d01ea40f350169444_JaffaCakes118
Files
-
c1ebd0a90f334a5d01ea40f350169444_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.textbss Size: - Virtual size: 77KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 3KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 87KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 5KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE