Static task
static1
Behavioral task
behavioral1
Sample
d6d62dd5d5162fe0afe675dd50f2b21b_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
d6d62dd5d5162fe0afe675dd50f2b21b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
d6d62dd5d5162fe0afe675dd50f2b21b_JaffaCakes118
-
Size
569KB
-
MD5
d6d62dd5d5162fe0afe675dd50f2b21b
-
SHA1
459b38f5a9dd1b3264de0d1955942c807e0c93be
-
SHA256
cc78d01619cae25530f7c770b2a20461ad94fccf306d05f2bfef38c094ee877c
-
SHA512
9b2067a96e4f117fe8090d869cc8b6b59967176878c6909131f85c5735055a5e793398241e51bfa2b6aaef01206d46d83e4b98633cb472472d21fafeed5f77bf
-
SSDEEP
12288:+hVeqOae5aBZLT8sFSat39CsAJVOvjmX/3RNprh8ygh4nF6rs:oPBZLT8aSaZ9CYvjmN/F00
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d6d62dd5d5162fe0afe675dd50f2b21b_JaffaCakes118
Files
-
d6d62dd5d5162fe0afe675dd50f2b21b_JaffaCakes118.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 816KB - Virtual size: 814KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 208KB - Virtual size: 206KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 192KB - Virtual size: 191KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ