Static task
static1
Behavioral task
behavioral1
Sample
d50282723889c45e8abcc3e2e7147153_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
d50282723889c45e8abcc3e2e7147153_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
d50282723889c45e8abcc3e2e7147153_JaffaCakes118
-
Size
412KB
-
MD5
d50282723889c45e8abcc3e2e7147153
-
SHA1
b1af6a1c8f6a80f4ec0c24a20f7ce8d8bbd07e35
-
SHA256
67e0d021ee479051ce2e095f6b8263e43b8055c8cea711bfe2cfef20dc8e8749
-
SHA512
2433241bbf21f73ecee1921492d9452cceadc1c513d91567123120ce7ee2ff57c9490cb2326522eb08382b08725a7d7899b4da5c44816c8af6f876d8710d217c
-
SSDEEP
12288:3NIQAPGsAqY9IMVYd38sJdpQHlUlY8KfTh:QPGSY91VwNJcFCqTh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d50282723889c45e8abcc3e2e7147153_JaffaCakes118
Files
-
d50282723889c45e8abcc3e2e7147153_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 354KB - Virtual size: 353KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ