Static task
static1
Behavioral task
behavioral1
Sample
c825f955c22223171fb11b2db1bdf32e_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
c825f955c22223171fb11b2db1bdf32e_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
c825f955c22223171fb11b2db1bdf32e_JaffaCakes118
-
Size
284KB
-
MD5
c825f955c22223171fb11b2db1bdf32e
-
SHA1
6bf0daa2807af77ba243e81652d761f3ad5237af
-
SHA256
8ec0c5727b98f69c9ed92199069604e2964be5a5aa40a6f2bf98c51ca96bd9f9
-
SHA512
7ee5a316d8e26bbe6f42afaa0d02a7b1ba0e0a400d98fad28e70a324a9704ab090e5c0248c0e9669af6e3b2792c33e4e462e0e5f2d23b4de0387cf0d47359b4a
-
SSDEEP
6144:/x3oBRlvcEdAanoulF59LooSF/0VqsInWYINgpUgdFY:yR9zF59L1SF/WqjxpU9
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c825f955c22223171fb11b2db1bdf32e_JaffaCakes118
Files
-
c825f955c22223171fb11b2db1bdf32e_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 125KB - Virtual size: 125KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 105KB - Virtual size: 980KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE