Static task
static1
Behavioral task
behavioral1
Sample
d11c57312360517909da52e2bd6994c0_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
d11c57312360517909da52e2bd6994c0_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
d11c57312360517909da52e2bd6994c0_JaffaCakes118
-
Size
13KB
-
MD5
d11c57312360517909da52e2bd6994c0
-
SHA1
29a113eb7c0b8582cb8122399e1c3bdab1e6bf7d
-
SHA256
27d03d1d43e739f541d6f8555038875f92d76c8d9a0cc5c999560b6ea37b6dbd
-
SHA512
7d13d2615444288ad09316d8c20e4360b5acb6cca400c1f507f5195fd03d762a48b1d64e9ddb480d4e36893ee258470646f5f6cfedf445aa04cd377955d15d9c
-
SSDEEP
384:jS/qe8zdTyBsyqAIZhgugcEt6q286DEIXjAFpt:jjWsyqAggqW2rXjAFT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d11c57312360517909da52e2bd6994c0_JaffaCakes118
Files
-
d11c57312360517909da52e2bd6994c0_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
Size: 4KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.petite Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE