Static task
static1
Behavioral task
behavioral1
Sample
d59e3364d1ac09f680da2701cf9d7a13_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
d59e3364d1ac09f680da2701cf9d7a13_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
d59e3364d1ac09f680da2701cf9d7a13_JaffaCakes118
-
Size
117KB
-
MD5
d59e3364d1ac09f680da2701cf9d7a13
-
SHA1
c638a0328f16b1f85373e2de9bc9c66e13bde0d4
-
SHA256
d4e8f69842c1c0d23ddda84d84a52151094d24c2ebaff17a1d520028246b5d7c
-
SHA512
aa0ca299a51021fd1d852d2e0dd18b3b8d1437d1cd3a8d5fddc94301b0876d696c864f78ed31a9d797eba5062e5469387d7283c27faaa0042c397ff670de134f
-
SSDEEP
3072:EOgx1i8pkOM1H+GgCUIBe36l+u7kbNf1+:ngMOQ+6dB04N7wN9+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d59e3364d1ac09f680da2701cf9d7a13_JaffaCakes118
Files
-
d59e3364d1ac09f680da2701cf9d7a13_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
lk Size: - Virtual size: 208KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
cr82 Size: 116KB - Virtual size: 120KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
aayw9qmr Size: 33B - Virtual size: 787B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE